Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 531
Alerts This Week
Warning Icon 1 531

Fedora 25: 2016-0c4e822340 Critical: Memcached Remote Execution Threat

fedora
Calendar Grey December 8, 2016
Scroller Fedora Esm H88
Fedora 25 has released an update for memcached, tackling several vulnerabilities linked to remote command execution, thereby enhancing the overall security posture.
Update to the latest upstream release, which fixes CVE-2016-8704, CVE-2016-8705, CVE-2016-8706.

Summary

memcached is a high-performance, distributed memory object caching

system, generic in nature, but intended for use in speeding up dynamic

web applications by alleviating database load.

Update Information:

Update to the latest upstream release, which fixes CVE-2016-8704, CVE-2016-8705, CVE-2016-8706.

Change Log

References


[ 1 ] Bug #1390510 - CVE-2016-8704 memcached: Server append/prepend remote code execution https://bugzilla.redhat.com/show_bug.cgi?id=1390510 [ 2 ] Bug #1390511 - CVE-2016-8705 memcached: Server update remote code execution https://bugzilla.redhat.com/show_bug.cgi?id=1390511 [ 3 ] Bug #1390512 - CVE-2016-8706 memcached: SASL authentication remote code execution https://bugzilla.redhat.com/show_bug.cgi?id=1390512

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade memcached' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: memcached
Product: Fedora 25
Version: 1.4.33
Release: 1.fc25
Summary: High Performance, Distributed Memory Object Cache

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.