Description The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr.
CVSS vector AV:A/AC:H/C:N/I:N/A:P Exploitability: 3.2 | Impact: 2.9 Complexity: High
Confidentiality: None
Integrity: None
Affected Packages3 packages
🔴 Vulnerability Details6 GHSA GHSA-73g2-74h6-466w: The do_item_get function in items ↗ 2022-05-14 ▶ GHSA GHSA-837m-gcpw-m94w: memcached before 1 ↗ 2022-05-14 ▶ GHSA GHSA-w2x5-3r39-4jxq: The process_bin_delete function in memcached ↗ 2022-05-05 ▶ OSV CVE-2013-0179: The process_bin_delete function in memcached ↗ 2014-01-13 ▶ OSV CVE-2013-7291: memcached before 1 ↗ 2014-01-13 ▶ Show 1 more
📋 Vendor Advisories7 Ubuntu Memcached vulnerabilities ↗ 2014-01-13 ▶ Red Hat memcached: remote DoS (crash) via a request that triggers "unbounded key print" ↗ 2013-01-08 ▶ Red Hat memcached: DoS due to buffer overrun when printing out keys to be deleted in verbose mode ↗ 2013-01-08 ▶ Red Hat memcached: remote DoS (segmentation fault) via a request to delete a key ↗ 2013-01-08 ▶ Debian CVE-2013-0179: memcached - The process_bin_delete function in memcached.c in memcached 1.4.4 and other vers... ↗ 2013 ▶ Show 2 more
💬 Community3 Bugzilla CVE-2013-7290 memcached: remote DoS (segmentation fault) via a request to delete a key ↗ 2014-01-14 ▶ Bugzilla CVE-2013-7291 memcached: remote DoS (crash) via a request that triggers "unbounded key print" ↗ 2014-01-14 ▶ Bugzilla CVE-2013-0179 memcached: DoS due to buffer overrun when printing out keys to be deleted in verbose mode ↗ 2013-01-14 ▶