CVE-2016-8705
critical
CVSS v3
9.8
CVSS v2
7.5
VIR risk
9.8
Description
Multiple integer overflows in process_bin_update function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
Predictions
Exploit likelihood
97%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2016-8705
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2016-8705.html
Vendor advisory: arch — https://security.archlinux.org/ASA-201611-1
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| arch | fixed | 1.4.32-1 | |
| debian | bookworm | fixed | 1.4.33-1 |
| debian | bullseye | fixed | 1.4.33-1 |
| debian | forky | fixed | 1.4.33-1 |
| debian | sid | fixed | 1.4.33-1 |
| debian | trixie | fixed | 1.4.33-1 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| memcached | memcached | {"endIncluding":"1.4.31"} | |
References
- https://security.archlinux.org/ASA-201611-1
- http://rhn.redhat.com/errata/RHSA-2016-2819.html
- http://rhn.redhat.com/errata/RHSA-2016-2820.html
- http://www.debian.org/security/2016/dsa-3704
- http://www.securityfocus.com/bid/94083
- http://www.securitytracker.com/id/1037333
- http://www.talosintelligence.com/reports/TALOS-2016-0220/
- https://access.redhat.com/errata/RHSA-2017:0059
- https://security.gentoo.org/glsa/201701-12
- https://www.suse.com/security/cve/CVE-2016-8705.html
- https://security-tracker.debian.org/tracker/CVE-2016-8705
CWEs
CWE-190
Verify integrity in audit chain (admin only). AS-IS.