CVE-2016-8704
critical
CVSS v3
9.8
CVSS v2
7.5
VIR risk
9.8
Description
An integer overflow in the process_bin_append_prepend function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
Predictions
Exploit likelihood
97%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2016-8704
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2016-8704.html
Vendor advisory: arch — https://security.archlinux.org/ASA-201611-1
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| arch | fixed | 1.4.32-1 | |
| sles | affected | | |
| debian | bookworm | fixed | 1.4.33-1 |
| debian | bullseye | fixed | 1.4.33-1 |
| debian | forky | fixed | 1.4.33-1 |
| debian | sid | fixed | 1.4.33-1 |
| debian | trixie | fixed | 1.4.33-1 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| memcached | memcached | {"endIncluding":"1.4.31"} | |
References
- https://security.archlinux.org/ASA-201611-1
- http://rhn.redhat.com/errata/RHSA-2016-2819.html
- http://rhn.redhat.com/errata/RHSA-2016-2820.html
- http://www.debian.org/security/2016/dsa-3704
- http://www.securityfocus.com/bid/94083
- http://www.securitytracker.com/id/1037333
- http://www.talosintelligence.com/reports/TALOS-2016-0219/
- https://access.redhat.com/errata/RHSA-2017:0059
- https://security.gentoo.org/glsa/201701-12
- https://www.suse.com/security/cve/CVE-2016-8704.html
- https://security-tracker.debian.org/tracker/CVE-2016-8704
CWEs
CWE-190
Verify integrity in audit chain (admin only). AS-IS.