Several security issues were fixed in Memcached ...
Synopsis
Moderate: Red Hat OpenStack Platform 8 director security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
An update for instack-undercloud and openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform 80 (Liberty) directorRed Hat Product Security has rated ...
Synopsis
Moderate: Red Hat OpenStack Platform director security update
Type/Severity
Security Advisory: Moderate
Topic
An update is now available for Red Hat OpenStack Platform 100 (Newton)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scorin ...
Synopsis
Moderate: Red Hat OpenStack Platform 120 director security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
An update for memcached is now available for Red Hat OpenStack Platform 120 (Pike)Red Hat Product Security has rated this update as having a security impact of Moderate ...
Synopsis
Moderate: Red Hat OpenStack Platform director security update
Type/Severity
Security Advisory: Moderate
Topic
An update is now available for Red Hat OpenStack Platform 110 (Ocata)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring ...
Debian Bug report logs -
#868701
memcached: CVE-2017-9951: Heap-based buffer over-read in try_read_command function
Package:
src:memcached;
Maintainer for src:memcached is Guillaume Delacour <gui@iroqwaorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Mon, 17 Jul 2017 20:39:02 UTC
Severity: important ...
Debian Bug report logs -
#894404
memcached: CVE-2018-1000127
Package:
memcached;
Maintainer for memcached is Guillaume Delacour <gui@iroqwaorg>; Source for memcached is src:memcached (PTS, buildd, popcon)
Reported by: Antoine Beaupre <anarcat@orangeseedsorg>
Date: Thu, 29 Mar 2018 21:33:02 UTC
Severity: grave
Tags ...
Several vulnerabilities were discovered in memcached, a high-performance
memory object caching system The Common Vulnerabilities and Exposures
project identifies the following problems:
CVE-2017-9951
Daniel Shapira reported a heap-based buffer over-read in memcached
(resulting from an incomplete fix for CVE-2016-8705) triggered by
spe ...
It was discovered that the memcached daemon listened on UDP port 11211 by default An attacker could use memcached for UDP amplification denial-of-service attacks The UDP port has been disabled by default, but can still be enabled
It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amp ...
It was discovered that the memcached daemon listened on UDP port 11211 by default An attacker could use memcached for UDP amplification denial-of-service attacks The UDP port has been disabled by default, but can still be enabled
It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amp ...
It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to th ...
Memcached version 155 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources) This attack appear to be exploitable via networ ...