rpm package
opensuse/memcached&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/memcached&distro=openSUSE%20Tumbleweed
Vulnerabilities (17)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-47784 | Hig | 8.1 | < 1.6.42-1.1 | 1.6.42-1.1 | May 20, 2026 | In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass. | |
| CVE-2026-47783 | Hig | 8.1 | < 1.6.42-1.1 | 1.6.42-1.1 | May 20, 2026 | In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by sasl_server_userdb_checkpass. | |
| CVE-2023-46853 | — | < 1.6.22-1.1 | 1.6.22-1.1 | Oct 27, 2023 | In Memcached before 1.6.22, an off-by-one error exists when processing proxy requests in proxy mode, if \n is used instead of \r\n. | ||
| CVE-2023-46852 | — | < 1.6.22-1.1 | 1.6.22-1.1 | Oct 27, 2023 | In Memcached before 1.6.22, a buffer overflow exists when processing multiget requests in proxy mode, if there are many spaces after the "get" substring. | ||
| CVE-2020-10931 | — | < 1.6.9-2.3 | 1.6.9-2.3 | Mar 24, 2020 | Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted binary protocol header to try_read_command_binary in memcached.c. | ||
| CVE-2018-1000127 | Hig | 7.5 | < 1.6.9-2.3 | 1.6.9-2.3 | Mar 13, 2018 | memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:item_free() that can result in data corruption and deadlocks due to items existing in hash table being reused from free list. This attack appear to be exploitable via network connectivity to t | |
| CVE-2018-1000115 | Hig | 7.5 | < 1.6.9-2.3 | 1.6.9-2.3 | Mar 5, 2018 | Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported | |
| CVE-2017-9951 | Hig | 7.5 | < 1.6.9-2.3 | 1.6.9-2.3 | Jul 17, 2017 | The try_read_command function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service (segmentation fault) via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read. N | |
| CVE-2016-8706 | Hig | 8.1 | < 1.4.33-1.1 | 1.4.33-1.1 | Jan 6, 2017 | An integer overflow in process_bin_sasl_auth function in Memcached, which is responsible for authentication commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution. | |
| CVE-2016-8705 | Cri | 9.8 | < 1.4.33-1.1 | 1.4.33-1.1 | Jan 6, 2017 | Multiple integer overflows in process_bin_update function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution. | |
| CVE-2016-8704 | Cri | 9.8 | < 1.4.33-1.1 | 1.4.33-1.1 | Jan 6, 2017 | An integer overflow in the process_bin_append_prepend function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution. | |
| CVE-2013-7291 | — | < 1.4.33-1.1 | 1.4.33-1.1 | Jan 13, 2014 | memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (crash) via a request that triggers an "unbounded key print" during logging, related to an issue that was "quickly grepped out of the source tree," a different vulnerabilit | ||
| CVE-2013-7290 | — | < 1.4.33-1.1 | 1.4.33-1.1 | Jan 13, 2014 | The do_item_get function in items.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator | ||
| CVE-2013-7239 | — | < 1.4.33-1.1 | 1.4.33-1.1 | Jan 13, 2014 | memcached before 1.4.17 allows remote attackers to bypass authentication by sending an invalid request with SASL credentials, then sending another request with incorrect SASL credentials. | ||
| CVE-2013-0179 | — | < 1.4.33-1.1 | 1.4.33-1.1 | Jan 13, 2014 | The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null | ||
| CVE-2011-4971 | — | < 1.4.33-1.1 | 1.4.33-1.1 | Dec 12, 2013 | Multiple integer signedness errors in the (1) process_bin_sasl_auth, (2) process_bin_complete_sasl_auth, (3) process_bin_update, and (4) process_bin_append_prepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service (crash) via a large bod | ||
| CVE-2009-1494 | — | < 1.4.33-1.1 | 1.4.33-1.1 | Apr 30, 2009 | The process_stat function in Memcached 1.2.8 discloses memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain potentially sensitive information by sending this command to the daemon's TCP port. |
- affected < 1.6.42-1.1fixed 1.6.42-1.1
In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass.
- affected < 1.6.42-1.1fixed 1.6.42-1.1
In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by sasl_server_userdb_checkpass.
- CVE-2023-46853Oct 27, 2023affected < 1.6.22-1.1fixed 1.6.22-1.1
In Memcached before 1.6.22, an off-by-one error exists when processing proxy requests in proxy mode, if \n is used instead of \r\n.
- CVE-2023-46852Oct 27, 2023affected < 1.6.22-1.1fixed 1.6.22-1.1
In Memcached before 1.6.22, a buffer overflow exists when processing multiget requests in proxy mode, if there are many spaces after the "get" substring.
- CVE-2020-10931Mar 24, 2020affected < 1.6.9-2.3fixed 1.6.9-2.3
Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted binary protocol header to try_read_command_binary in memcached.c.
- affected < 1.6.9-2.3fixed 1.6.9-2.3
memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:item_free() that can result in data corruption and deadlocks due to items existing in hash table being reused from free list. This attack appear to be exploitable via network connectivity to t
- affected < 1.6.9-2.3fixed 1.6.9-2.3
Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported
- affected < 1.6.9-2.3fixed 1.6.9-2.3
The try_read_command function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service (segmentation fault) via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read. N
- affected < 1.4.33-1.1fixed 1.4.33-1.1
An integer overflow in process_bin_sasl_auth function in Memcached, which is responsible for authentication commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
- affected < 1.4.33-1.1fixed 1.4.33-1.1
Multiple integer overflows in process_bin_update function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
- affected < 1.4.33-1.1fixed 1.4.33-1.1
An integer overflow in the process_bin_append_prepend function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
- CVE-2013-7291Jan 13, 2014affected < 1.4.33-1.1fixed 1.4.33-1.1
memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (crash) via a request that triggers an "unbounded key print" during logging, related to an issue that was "quickly grepped out of the source tree," a different vulnerabilit
- CVE-2013-7290Jan 13, 2014affected < 1.4.33-1.1fixed 1.4.33-1.1
The do_item_get function in items.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator
- CVE-2013-7239Jan 13, 2014affected < 1.4.33-1.1fixed 1.4.33-1.1
memcached before 1.4.17 allows remote attackers to bypass authentication by sending an invalid request with SASL credentials, then sending another request with incorrect SASL credentials.
- CVE-2013-0179Jan 13, 2014affected < 1.4.33-1.1fixed 1.4.33-1.1
The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null
- CVE-2011-4971Dec 12, 2013affected < 1.4.33-1.1fixed 1.4.33-1.1
Multiple integer signedness errors in the (1) process_bin_sasl_auth, (2) process_bin_complete_sasl_auth, (3) process_bin_update, and (4) process_bin_append_prepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service (crash) via a large bod
- CVE-2009-1494Apr 30, 2009affected < 1.4.33-1.1fixed 1.4.33-1.1
The process_stat function in Memcached 1.2.8 discloses memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain potentially sensitive information by sending this command to the daemon's TCP port.