CVE-2013-0179

Priority
Low
Description
The process_bin_delete function in memcached.c in memcached 1.4.4 and other
versions before 1.4.17, when running in verbose mode, allows remote
attackers to cause a denial of service (segmentation fault) via a request
to delete a key, which does not account for the lack of a null terminator
in the key and triggers a buffer over-read when printing to stderr.
References
Bugs
Notes
jdstrand> requires '-vv' with is non-default
mdeslaur> The second commit in the bug report was split out into two
mdeslaur> additional CVEs, CVE-2013-7290 and CVE-2013-7291.
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 10.04 LTS (Lucid Lynx):ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):released (1.4.13-0ubuntu2.1)
Ubuntu 12.10 (Quantal Quetzal):released (1.4.14-0ubuntu1.12.10.1)
Ubuntu 13.04 (Raring Ringtail):released (1.4.14-0ubuntu1.13.04.1)
Ubuntu 13.10 (Saucy Salamander):released (1.4.14-0ubuntu4.1)
Ubuntu 14.04 LTS (Trusty Tahr):released (1.4.14-0ubuntu9)
Patches:
Upstream:https://github.com/memcached/memcached/commit/0f605245cf3f37c2efe4e225237ad17256ea2a34
Upstream:https://github.com/memcached/memcached/commit/fbe823d9a61b5149cd6e3b5e17bd28dd3b8dd760
More Information

Valid XHTML 1.0 Strict

Updated: 2014-01-15 18:14:42 UTC (commit 7645)