Lucene search
MitreCVELIST:CVE-2018-1000127HistoryMar 13, 2018 - 9:00 p.m.
CVE-2018-1000127
2018-03-1321:00:00
mitre
www.cve.org
memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:item_free() that can result in data corruption and deadlocks due to items existing in hash table being reused from free list. This attack appear to be exploitable via network connectivity to the memcached service. This vulnerability appears to have been fixed in 1.4.37 and later.
References
access.redhat.com/errata/RHSA-2018:2290
github.com/memcached/memcached/commit/a8c4a82787b8b6c256d61bd5c42fb7f92d1bae00
github.com/memcached/memcached/issues/271
github.com/memcached/memcached/wiki/ReleaseNotes1437
lists.debian.org/debian-lts-announce/2018/03/msg00031.html
usn.ubuntu.com/3601-1/
www.debian.org/security/2018/dsa-4218
Related
cve
cve
CVE-2018-1000127
2018-03-13 21:29:00
osv
osv
CVE-2018-1000127
2018-03-13 21:29:00
memcached - security update
2018-03-29 00:00:00
memcached - security update
2018-06-06 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1329-1)
2018-04-01 00:00:00
Ubuntu: Security Advisory (USN-3601-1)
2018-03-20 00:00:00
Huawei EulerOS: Security Advisory for memcached (EulerOS-SA-2018-1177)
2020-01-23 00:00:00
nessus
nessus
Debian DLA-1329-1 : memcached security update
2018-03-30 00:00:00
EulerOS 2.0 SP3 : memcached (EulerOS-SA-2018-1177)
2018-07-03 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Memcached vulnerability (USN-3601-1)
2018-03-20 00:00:00
redhat
redhat
(RHSA-2018:2290) Moderate: memcached security update
2018-07-30 17:28:24
veracode
veracode
Data Corruption
2019-01-15 09:25:19
prion
prion
Integer overflow
2018-03-13 21:29:00
ubuntu
ubuntu
Memcached vulnerability
2018-03-19 00:00:00
debiancve
debiancve
CVE-2018-1000127
2018-03-13 21:29:00
debian
debian
[SECURITY] [DLA 1329-1] memcached security update
2018-03-29 21:48:46
[SECURITY] [DSA 4218-1] memcached security update
2018-06-06 18:52:34
[SECURITY] [DSA 4218-1] memcached security update
2018-06-06 18:52:34
nvd
nvd
CVE-2018-1000127
2018-03-13 21:29:00
ubuntucve
ubuntucve
CVE-2018-1000127
2018-03-13 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1917
2021-07-02 17:28:39