memcached: code execution [LWN.net]

Package(s):

memcached

CVE #(s):

CVE-2016-8704 CVE-2016-8705 CVE-2016-8706

Created:

November 1, 2016

Updated:

January 12, 2017

Description:

From the Arch Linux advisory:

- CVE-2016-8704 (arbitrary code execution): An integer overflow in the process_bin_append_prepend function which is responsible for processing multiple commands of Memcached binary protocol can be abused to cause heap overflow and lead to remote code execution.

- CVE-2016-8705 (arbitrary code execution): Multiple integer overflows in process_bin_update function which is responsible for processing multiple commands of Memcached binary protocol can be abused to cause heap overflow and lead to remote code execution.

- CVE-2016-8706 (arbitrary code execution): An integer overflow in process_bin_sasl_auth function which is responsible for authentication commands of Memcached binary protocol can be abused to cause heap overflow and lead to remote code execution.

Alerts:

Fedora	FEDORA-2016-4df986a71f	memcached	2016-11-14
Fedora	FEDORA-2016-66c70cadb4	memcached	2016-11-14
Debian-LTS	DLA-701-1	memcached	2016-11-05
Debian	DSA-3704-1	memcached	2016-11-03
Ubuntu	USN-3120-1	memcached	2016-11-02
Arch Linux	ASA-201611-1	memcached	2016-11-01
Red Hat	RHSA-2017:0059-01	memcached	2017-01-11
Gentoo	201701-12	memcached	2017-01-02
Scientific Linux	SLSA-2016:2819-1	memcached	2016-12-14
Fedora	FEDORA-2016-0c4e822340	memcached	2016-12-08
CentOS	CESA-2016:2820	memcached	2016-11-28
Scientific Linux	SLSA-2016:2820-1	memcached	2016-11-23
Oracle	ELSA-2016-2820	memcached	2016-11-22
Oracle	ELSA-2016-2819	memcached	2016-11-22
Red Hat	RHSA-2016:2820-01	memcached	2016-11-23
Red Hat	RHSA-2016:2819-01	memcached	2016-11-23
openSUSE	openSUSE-SU-2016:2839-1	memcached	2016-11-17
openSUSE	openSUSE-SU-2016:2841-1	memcached	2016-11-17
Mageia	MGASA-2016-0381	memcached	2016-11-17