19 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-9951
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The tryreadcommand function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service segmentation fault via a request to...
SUSE CVE-2017-9951
The tryreadcommand function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service segmentation fault via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read. NOTE: this vulnerabili...
Mageia: Security Advisory (MGASA-2017-0441)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Advisory ROSA-SA-2021-1917
Software: memcached 1.4.15 OS: Cobalt 7.9 CVE-ID: CVE-2017-9951 CVE-Crit: HIGH CVE-DESC: The tryreadcommand function in memcached.c in memcached prior to version 1.4.39 allows remote attackers to cause a denial of service segmentation error with an add / set key request, which allows to compare...
SUSE: Security Advisory (SUSE-SU-2018:0839-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.2.2 : memcached (EulerOS-SA-2020-2208)
According to the versions of the memcached packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The tryreadcommand function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service...
EulerOS Virtualization 3.0.6.0 : memcached (EulerOS-SA-2020-1784)
According to the versions of the memcached package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume Network Amplification, CWE-406 vulnerability...
EulerOS 2.0 SP5 : memcached (EulerOS-SA-2019-2213)
According to the versions of the memcached package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume Network Amplification, CWE-406 vulnerability in the UDP...
[SECURITY] [DSA 4218-1] memcached security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4218-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 06, 2018 https://www.debian.org/security/faq -...
Fedora Update for memcached FEDORA-2018-122ea355a7
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for memcached (openSUSE-SU-2018:0855-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for memcached (important)
This update for memcached fixes the following issues: - CVE-2017-9951: Fixed heap-based buffer over-read in tryreadcommand function which allowed remote attackers to cause a denial of service attack bsc1056865. This update was imported from the SUSE:SLE-12:Update update project...
SUSE SLES12 Security Update : memcached (SUSE-SU-2018:0839-1)
This update for memcached fixes the following issues : - CVE-2017-9951: Fixed heap-based buffer over-read in tryreadcommand function which allowed remote attackers to cause a denial of service attack bsc1056865. Note that Tenable Network Security has extracted the preceding description block...
Ubuntu: Security Advisory (USN-3588-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2017-0441 Updated memcached packages fix security vulnerability
The tryreadcommand function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service segmentation fault via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read CVE-2017-9951...
CVE-2017-9951
The tryreadcommand function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service segmentation fault via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read. NOTE: this vulnerabili...
DEBIAN-CVE-2017-9951
The tryreadcommand function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service segmentation fault via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read. NOTE: this vulnerabili...
CVE-2017-9951
Summary: CVE-2017-9951 is a heap-based buffer over-read in memcached’s try_read_command path, exploitable remotely to cause a Denial of Service (segmentation fault). This is triggered by specially crafted add/set requests and stems from a signed/unsigned integer comparison, linked to an incomplet...
CVE-2017-9951
The tryreadcommand function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service segmentation fault via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read. NOTE: this vulnerabili...