7.5
CVSSv3

CVE-2019-11596

Published: 29/04/2019 Updated: 07/11/2023
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

In memcached prior to 1.5.14, a NULL pointer dereference was found in the "lru mode" and "lru temp_ttl" commands. This causes a denial of service when parsing crafted lru command messages in process_lru_command in memcached.c.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

memcached memcached

canonical ubuntu linux 18.04

canonical ubuntu linux 18.10

canonical ubuntu linux 19.04

Vendor Advisories

Synopsis Moderate: memcached security update Type/Severity Security Advisory: Moderate Topic An update for memcached is now available for Red Hat OpenStack Platform 13(Queens)Red Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) ...
Synopsis Moderate: memcached security update Type/Severity Security Advisory: Moderate Topic An update for memcached is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score ...
Memcached could be made to crash if it received specially crafted network traffic ...
Debian Bug report logs - #928205 memcached: CVE-2019-11596 Package: src:memcached; Maintainer for src:memcached is Guillaume Delacour <gui@iroqwaorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 29 Apr 2019 20:30:01 UTC Severity: important Tags: fixed-upstream, patch, security, upstream Found i ...