Advisories ยป MGASA-2019-0232

Updated memcached packages fix security vulnerability

Publication date: 31 Aug 2019
Modification date: 31 Aug 2019
Type: security
Affected Mageia releases : 6 , 7
CVE: CVE-2019-11596

Description

AUpdated memcached packages fix security vulnerability:

In memcached before 1.5.14, a NULL pointer dereference was found in the
"lru mode" and "lru temp_ttl" commands. This causes a denial of service
when parsing crafted lru command messages in process_lru_command in
memcached.c (CVE-2019-11596).
                

References

SRPMS

6/core

7/core