Hi Chris, I'm trying to clarify some packages which have security-fixes which did not yet land in bookworm.
redis is on the radar for that, recent uploads for unstable did fix some (arguably no-dsa) CVEs. Redis is though not able to migrate to testing. Can you have a look and if the testing regressions are fase positives or to be ignore fill a unblock request for the release team? https://qa.debian.org/excuses.php?package=redis mentios that ther are autopkgtest regression for python-channels-redis. As it is furthermore a key package is needs to be asked explicilty for an unblock. CVEs fixed in unstable but not yet in bookworm cover CVE-2022-35977, CVE-2022-36021, CVE-2023-22458 and CVE-2023-25155. Would be great to have redis situation addresses before bookworm release. Regards, Salvatore
