PT-2019-12406 · Memcached+5 · Memcached+5

Stze

Publicado

2019-04-10

Atualizado

2020-07-29

CVE-2019-11596

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions memcached versions prior to 1.5.14 ALT Linux (affected versions not specified)

Description A denial of service issue was found in memcached when parsing crafted lru command messages. This issue is related to the "lru mode" and "lru temp ttl" commands in the process lru command function in memcached.c.

Recommendations For memcached versions prior to 1.5.14, update to version 1.5.14 or later to resolve the issue. For ALT Linux, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

ALT-PU-2019-1852

ALT-PU-2019-1854

CESA-2020_1576

CVE-2019-11596

MGASA-2019-0232

OPENSUSE-SU-2020:0721-1

OPENSUSE-SU-2020_0721-1

RHSA-2020:1576

RHSA-2020:5583

RHSA-2020_1576

SUSE-RU-2020:2072-1

SUSE-SU-2020:0843-1

SUSE-SU-2020:1066-1

SUSE-SU-2020:1190-1

SUSE-SU-2020:1381-1

SUSE-SU-2020_0843-1

SUSE-SU-2020_1381-1

USN-3963-1

Produtos afetados

Alt Linux

Centos

Red Hat

Suse

Ubuntu

Memcached

PT-2019-12406 · Memcached+5 · Memcached+5

CVE-2019-11596

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 134