PT-2019-12406 · Memcached+5 · Memcached+5

Stze

Published

2019-04-10

Updated

2020-07-29

CVE-2019-11596

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions memcached versions prior to 1.5.14 ALT Linux (affected versions not specified)

Description A denial of service issue was found in memcached when parsing crafted lru command messages. This issue is related to the "lru mode" and "lru temp ttl" commands in the process lru command function in memcached.c.

Recommendations For memcached versions prior to 1.5.14, update to version 1.5.14 or later to resolve the issue. For ALT Linux, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2019-1852

ALT-PU-2019-1854

CESA-2020_1576

CVE-2019-11596

MGASA-2019-0232

OPENSUSE-SU-2020:0721-1

OPENSUSE-SU-2020_0721-1

RHSA-2020:1576

RHSA-2020:5583

RHSA-2020_1576

SUSE-RU-2020:2072-1

SUSE-SU-2020:0843-1

SUSE-SU-2020:1066-1

SUSE-SU-2020:1190-1

SUSE-SU-2020:1381-1

SUSE-SU-2020_0843-1

SUSE-SU-2020_1381-1

USN-3963-1

Affected Products

Alt Linux

Centos

Red Hat

Suse

Ubuntu

Memcached

PT-2019-12406 · Memcached+5 · Memcached+5

CVE-2019-11596

Weakness Enumeration

Related Identifiers

Affected Products

References · 134