memcached: Multiple vulnerabilities

memcached: Multiple vulnerabilities Multiple vulnerabilities have been found in memcached which could lead to the remote execution of arbitrary code. memcached 2017-01-02 2017-01-02 598836 remote 1.4.33 1.4.33

memcached is a high-performance, distributed memory object caching system

Multiple integer overflow vulnerabilities were discovered in memcached. Please review the CVE identifiers and Cisco TALOS reports referenced below for details.

A remote attacker could abuse memcached’s binary protocol leading to the remote execution of arbitrary code.

There is no known workaround at this time.

All memcached users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=net-misc/memcached-1.4.33"

CVE-2016-8704 CVE-2016-8705 CVE-2016-8706 TALOS-2016-0219 TALOS-2016-0220 TALOS-2016-0221 b-man b-man