Candidate: CVE-2010-1152
PublicDate: 2010-04-12 18:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1152
Description:
 memcached.c in memcached before 1.4.3 allows remote attackers to cause a
 denial of service (daemon hang or crash) via a long line that triggers
 excessive memory allocation.  NOTE: some of these details are obtained from
 third party information.
Ubuntu-Description:
Notes:
 jdstrand> 1.4.2-1ubuntu1 in Lucid only has a partial fix (the first patch)
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/memcached/+bug/558328
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=579913
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_memcached:
 upstream: http://github.com/memcached/memcached/commit/75cc83685e103bc8ba380a57468c8f04413033f9
 upstream: http://github.com/memcached/memcached/commit/d9cd01ede97f4145af9781d448c62a3318952719
upstream_memcached: released (1.4.5-1)
dapper_memcached: ignored (reached end-of-life)
hardy_memcached: ignored (reached end-of-life)
intrepid_memcached: needed (reached end-of-life)
jaunty_memcached: ignored (reached end-of-life)
karmic_memcached: ignored (reached end-of-life)
lucid_memcached: released (1.4.2-1ubuntu2)
maverick_memcached: not-affected (1.4.5-1ubuntu1)
natty_memcached: not-affected (1.4.5-1ubuntu1)
oneiric_memcached: not-affected (1.4.5-1ubuntu1)
devel_memcached: not-affected (1.4.5-1ubuntu1)