Merge branch 'main' into DOC-4377

Author: kaitlynmichael

content/develop/get-started/vector-database.md

@@ -76,7 +76,7 @@ Connect to Redis. By default, Redis returns binary responses. To decode them, yo
 {{< clients-example search_vss connect />}}
 <br/>
 {{% alert title="Tip" color="warning" %}}
-Instead of using a local Redis Stack server, you can copy and paste the connection details from the Redis Cloud database configuration page. Here is an example connection string of a Cloud database that is hosted in the AWS region `us-east-1` and listens on port 16379: `redis-16379.c283.us-east-1-4.ec2.cloud.redislabs.com:16379`. The connection string has the format `host:port`. You must also copy and paste the username and password of your Cloud database. The line of code for connecting with the default user changes then to `client = redis.Redis(host="redis-16379.c283.us-east-1-4.ec2.cloud.redislabs.com", port=16379, password="your_password_here" decode_responses=True)`.
+Instead of using a local Redis Stack server, you can copy and paste the connection details from the Redis Cloud database configuration page. Here is an example connection string of a Cloud database that is hosted in the AWS region `us-east-1` and listens on port 16379: `redis-16379.c283.us-east-1-4.ec2.cloud.redislabs.com:16379`. The connection string has the format `host:port`. You must also copy and paste the username and password of your Cloud database. The line of code for connecting with the default user changes then to `client = redis.Redis(host="redis-16379.c283.us-east-1-4.ec2.cloud.redislabs.com", port=16379, password="your_password_here", decode_responses=True)`.
 {{% /alert  %}}
 
 
@@ -115,7 +115,7 @@ Now iterate over the `bikes`  array to store the data as [JSON]({{< relref "/dev
 
 {{< clients-example search_vss load_data />}}
 
-Once loaded, you can retrieve a specific attributes from one of the JSON documents in Redis using a [JSONPath](https://goessner.net/articles/JsonPath/) expression:
+Once loaded, you can retrieve a specific attribute from one of the JSON documents in Redis using a [JSONPath](https://goessner.net/articles/JsonPath/) expression:
 
 {{< clients-example search_vss get />}}
 

content/develop/interact/search-and-query/query/combined.md

@@ -54,15 +54,15 @@ FT.SEARCH index "@text_field:( value1 value2 ... )"
 
 The following example shows you a query that finds bicycles in new condition and in a price range from 500 USD to 1000 USD:
 
-```
+{{< clients-example query_combined combined1 >}}
 FT.SEARCH idx:bicycle "@price:[500 1000] @condition:{new}"
-```
+{{< /clients-example >}}
 
 You might also be interested in bicycles for kids. The query below shows you how to combine a full-text search with the criteria from the previous query:
 
-```
+{{< clients-example query_combined combined2 >}}
 FT.SEARCH idx:bicycle "kids (@price:[500 1000] @condition:{used})"
-```
+{{< /clients-example >}}
 
 ## OR
 
@@ -89,21 +89,21 @@ FT.SEARCH index "@tag_field:{ value1 | value2 | ... }"
 
 The following query shows you how to find used bicycles that contain either the word 'kids' or 'small':
 
-```
+{{< clients-example query_combined combined3 >}}
 FT.SEARCH idx:bicycle "(kids | small) @condition:{used}"
-```
+{{< /clients-example >}}
 
 The previous query searches across all text fields. The following example shows you how to limit the search to the description field:
 
-```
+{{< clients-example query_combined combined4 >}}
 FT.SEARCH idx:bicycle "@description:(kids | small) @condition:{used}"
-```
+{{< /clients-example >}}
 
 If you want to extend the search to new bicycles, then the below example shows you how to do that:
 
-```
+{{< clients-example query_combined combined5 >}}
 FT.SEARCH idx:bicycle "@description:(kids | small) @condition:{new | used}"
-```
+{{< /clients-example >}}
 
 ## NOT
 
@@ -115,9 +115,9 @@ FT.SEARCH index "-(expr)"
 
 If you want to exclude new bicycles from the search within the previous price range, you can use this query:
 
-```
+{{< clients-example query_combined combined6 >}}
 FT.SEARCH idx:bicycle "@price:[500 1000] -@condition:{new}"
-```
+{{< /clients-example >}}
 
 ## Numeric filter
 
@@ -140,8 +140,8 @@ FT.SEARCH index "(filter_expr)=>[KNN num_neighbours @field $vector]" PARAMS 2 ve
 
 Here is an example:
 
-```
+{{< clients-example query_combined combined7 >}}
 FT.SEARCH idx:bikes_vss "(@price:[500 1000] @condition:{new})=>[KNN 3 @vector $query_vector]" PARAMS 2 "query_vector" "Z\xf8\x15:\xf23\xa1\xbfZ\x1dI>\r\xca9..." DIALECT 2
-```
+{{< /clients-example >}}
 
 The [vector search article]({{< relref "/develop/interact/search-and-query/query/vector-search" >}}) provides further details about vector queries in general.

content/operate/kubernetes/release-notes/6-4-2-releases/6-4-2-8-oct24.md

@@ -0,0 +1,62 @@
+---
+alwaysopen: false
+categories:
+- docs
+- operate
+- kubernetes
+description: The Redis Enterprise K8s 6.4.2-8 release supports Redis Enterprise Software 6.4.2.
+linkTitle: 6.4.2-8 (Oct 2024)
+title: Redis Enterprise for Kubernetes release notes 6.4.2-8 (Oct 2024)
+weight: 53
+---
+
+## Overview
+
+This is a maintenance release of Redis Enterprise for Kubernetes version 6.4.2-8 and includes an updated Redis Enterprise image.
+
+## New in this release
+
+### Feature enhancements
+
+* New Redis Enterprise software version 6.4.2-115
+
+## Upgrade considerations
+
+Be aware the following changes included in this release affect the upgrade process. Please read carefully before upgrading to 6.4.2-8.
+
+* **Upgrade path to versions 7.2.4-2 or later**
+
+  Upgrading from this versions 7.2.4-2 or 7.2.4-7 is not possible using the OpenShift Operator Lifecycle Manager (OLM). OLM users will need to skip to version 7.2.4-10 to upgrade from this release version.
+
+* **ValidatingWebhookConfiguration**
+
+  This release uses a new `ValidatingWebhookConfiguration` resource to replace the `redb-admission` webhook resource. To use releases 6.4.2-4 or later, delete the old webhook resource and apply the new file. See [upgrade Redis cluster]({{< relref "/operate/kubernetes/upgrade/upgrade-redis-cluster#reapply-webhook" >}}) for instructions.
+
+* **OpenShift SCC**
+
+  This release includes a new SCC (`redis-enterprise-scc-v2`) that you need to bind to your service account before upgrading. OpenShift clusters running version 6.2.12 or earlier upgrading to version 6.2.18 or later might get stuck if you skip this step. See [upgrade a Redis Enterprise cluster (REC)]({{< relref "/operate/kubernetes/upgrade/upgrade-redis-cluster#before-upgrading" >}}) for more info.
+
+## Compatibility
+
+See [6.4.2-8 (July 2023) release notes]({{< relref "/operate/kubernetes/release-notes/6-4-2-releases/6-4-2-8#compatibility" >}}).
+
+### Images
+
+* **Redis Enterprise**: `redislabs/redis:6.4.2-115`
+* **Operator**: `redislabs/operator:6.4.2-8`
+* **Services Rigger**: `redislabs/k8s-controller:6.4.2-8.`
+
+#### OpenShift images
+
+* **Redis Enterprise**: `registry.connect.redhat.com/redislabs/redis-enterprise:6.4.2-115.rhel8-openshift`
+    (or `redislabs/redis-enterprise:6.4.2-115.rhel7-openshift` if upgrading from RHEL 7)
+* **Operator**: `registry.connect.redhat.com/redislabs/redis-enterprise-operator:6.4.2-8`
+* **Services Rigger**: `registry.connect.redhat.com/redislabs/services-manager:6.4.2-8`
+
+#### OLM bundle
+
+* **Redis Enterprise operator bundle** : `v6.4.2-8.10`
+
+## Known limitations
+
+See [6.4.2-8 (July 2023) release notes]({{< relref "/operate/kubernetes/release-notes/6-4-2-releases/6-4-2-8#known-limitations" >}}).

content/operate/kubernetes/release-notes/7-2-4-releases/7-2-4-12-08-2024.md

@@ -22,6 +22,8 @@ This is a maintenance release to support Redis Enterprise Software version 7.2.4
 
 ## Version changes
 
+For a list of fixes related to CVEs, see the [Redis Enterprise 7.2.4-109 release notes]({{<relref "operate/rs/release-notes/rs-7-2-4-releases/rs-7-2-4-109">}}).
+
 ### Breaking changes
 
 The following changes included in this release affect the upgrade process. Please read carefully before upgrading to 7.2.4-12.
@@ -42,6 +44,7 @@ Versions 6.4.2-4 and later include a new `ValidatingWebhookConfiguration` resour
 
 Versions 6.4.2-6 and later include a new SCC (`redis-enterprise-scc-v2`) that you need to bind to your service account before upgrading. OpenShift clusters running version 6.2.12 or earlier upgrading to version 6.2.18 or later might get stuck if you skip this step. See [upgrade a Redis Enterprise cluster (REC)]({{< relref "/operate/kubernetes/upgrade/upgrade-redis-cluster#before-upgrading" >}}) for instructions.
 
+
 ### Upcoming changes
 
 - A future release of Redis Enterprise will remove support for RHEL7. We recommend migrating to RHEL8.

content/operate/kubernetes/release-notes/7-4-6-releases/7-4-6-2-oct24.md

@@ -14,6 +14,7 @@ weight: 3
 
 This is a maintenance release to support [Redis Enterprise Software version 7.4.6-77]({{<relref "operate/rs/release-notes/rs-7-4-2-releases/rs-7-4-6-102/">}}). For version changes, supported distributions, and known limitations, see the [release notes for 7-4-6-2 (July 2024)]({{<relref "/operate/kubernetes/release-notes/7-4-6-releases/7-4-6-2">}}).
 
+
 ## Downloads
 
 - **Redis Enterprise**: `redislabs/redis:7.4.6-77`

content/operate/kubernetes/release-notes/7-4-6-releases/7-4-6-2.md

@@ -33,6 +33,8 @@ The primary purpose of this release is to support [Redis Enterprise Software ver
 
 ## Version changes
 
+For a list of fixes related to CVEs, see the [Redis Enterprise 7.2.4-109 release notes]({{<relref "/operate/rs/release-notes/rs-7-4-2-releases/rs-7-4-6-22">}}).
+
 ### Breaking changes
 
 The following changes included in this release affect the upgrade process. Please read carefully before upgrading.

content/operate/rs/installing-upgrading/quickstarts/docker-quickstart.md

@@ -9,6 +9,7 @@ description: Set up a development or test deployment of Redis Enterprise Softwar
   using Docker.
 linkTitle: Docker quickstart
 weight: 2
+aliases: /operate/rs/installing-upgrading/get-started-docker/
 ---
 {{< warning >}}
 Docker containers are currently only supported for development and test environments, not for production. Use [Redis Enterprise on Kubernetes]({{< relref "/operate/kubernetes" >}}) for a supported containerized deployment.

content/operate/rs/release-notes/rs-6-4-2-releases/rs-6-4-2-110.md

@@ -108,6 +108,10 @@ Redis Enterprise 6.4.2-110 supports open source Redis 6.2 and 6.0. Below is the
 
 Redis 6.2.x:
 
+- (CVE-2024-31449) An authenticated user may use a specially crafted Lua script to trigger a stack buffer overflow in the bit library, which may potentially lead to remote code execution.
+
+- (CVE-2024-31228) An authenticated user can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as `KEYS`, `SCAN`, `PSUBSCRIBE`, `FUNCTION LIST`, `COMMAND LIST`, and ACL definitions. Matching of extremely long patterns may result in unbounded recursion, leading to stack overflow and process crashes.
+
 - (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a
 race condition that can be used by another process to bypass desired Unix
 socket permissions on startup. (Redis 6.2.14)

content/operate/rs/release-notes/rs-6-4-2-releases/rs-6-4-2-115.md

@@ -100,6 +100,10 @@ Redis Enterprise 6.4.2-115 supports open source Redis 6.2 and 6.0. Below is the
 
 Redis 6.2.x:
 
+- (CVE-2024-31449) An authenticated user may use a specially crafted Lua script to trigger a stack buffer overflow in the bit library, which may potentially lead to remote code execution.
+
+- (CVE-2024-31228) An authenticated user can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as `KEYS`, `SCAN`, `PSUBSCRIBE`, `FUNCTION LIST`, `COMMAND LIST`, and ACL definitions. Matching of extremely long patterns may result in unbounded recursion, leading to stack overflow and process crashes.
+
 - (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a
 race condition that can be used by another process to bypass desired Unix
 socket permissions on startup. (Redis 6.2.14)

content/operate/rs/release-notes/rs-7-2-4-releases/rs-7-2-4-109.md

@@ -104,12 +104,20 @@ Redis Enterprise 7.2.4-109 supports open source Redis 7.2, 6.2, and 6.0. Below i
 
 Redis 7.2.x:
 
+- (CVE-2024-31449) An authenticated user may use a specially crafted Lua script to trigger a stack buffer overflow in the bit library, which may potentially lead to remote code execution.
+
+- (CVE-2024-31228) An authenticated user can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as `KEYS`, `SCAN`, `PSUBSCRIBE`, `FUNCTION LIST`, `COMMAND LIST`, and ACL definitions. Matching of extremely long patterns may result in unbounded recursion, leading to stack overflow and process crashes.
+
 - (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory buffers, which can result in incorrect accounting of buffer sizes and lead to heap overflow and potential remote code execution.
 
 - (CVE-2023-41053) Redis does not correctly identify keys accessed by `SORT_RO` and, as a result, may grant users executing this command access to keys that are not explicitly authorized by the ACL configuration. (Redis 7.2.1)
 
 Redis 7.0.x:
 
+- (CVE-2024-31449) An authenticated user may use a specially crafted Lua script to trigger a stack buffer overflow in the bit library, which may potentially lead to remote code execution.
+
+- (CVE-2024-31228) An authenticated user can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as `KEYS`, `SCAN`, `PSUBSCRIBE`, `FUNCTION LIST`, `COMMAND LIST`, and ACL definitions. Matching of extremely long patterns may result in unbounded recursion, leading to stack overflow and process crashes.
+
 - (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory buffers, which can result in incorrect accounting of buffer sizes and lead to heap overflow and potential remote code execution.
 
 - (CVE-2023-41053) Redis does not correctly identify keys accessed by `SORT_RO` and, as a result, may grant users executing this command access to keys that are not explicitly authorized by the ACL configuration. (Redis 7.0.13)
@@ -140,6 +148,10 @@ Redis 7.0.x:
 
 Redis 6.2.x:
 
+- (CVE-2024-31449) An authenticated user may use a specially crafted Lua script to trigger a stack buffer overflow in the bit library, which may potentially lead to remote code execution.
+
+- (CVE-2024-31228) An authenticated user can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as `KEYS`, `SCAN`, `PSUBSCRIBE`, `FUNCTION LIST`, `COMMAND LIST`, and ACL definitions. Matching of extremely long patterns may result in unbounded recursion, leading to stack overflow and process crashes.
+
 - (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a
 race condition that can be used by another process to bypass desired Unix
 socket permissions on startup. (Redis 6.2.14)