Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201406-13

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.121216
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201406-13
Summary:	Gentoo Linux Local Security Checks GLSA 201406-13
Description:	Summary: Gentoo Linux Local Security Checks GLSA 201406-13 Vulnerability Insight: memcached authentication could be bypassed when using SASL due to a flaw related to SASL authentication state. Also several heap-based buffer overflows due to integer conversions when parsing certain length attributes were discovered. Solution: Update the affected packages to the latest available version. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2415 35989 http://www.securityfocus.com/bid/35989 36133 http://secunia.com/advisories/36133 37729 http://secunia.com/advisories/37729 56906 http://osvdb.org/56906 DSA-1853 http://www.debian.org/security/2009/dsa-1853 FEDORA-2009-12552 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00836.html http://security.debian.org/pool/updates/main/m/memcached/memcached_1.1.12-1+etch1.diff.gz http://security.debian.org/pool/updates/main/m/memcached/memcached_1.2.2-1+lenny1.diff.gz Common Vulnerability Exposure (CVE) ID: CVE-2013-7239 BugTraq ID: 64559 http://www.securityfocus.com/bid/64559 Debian Security Information: DSA-2832 (Google Search) http://www.debian.org/security/2014/dsa-2832 http://seclists.org/oss-sec/2013/q4/572 http://secunia.com/advisories/56183 http://www.ubuntu.com/usn/USN-2080-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-4971 56183 59567 http://www.securityfocus.com/bid/59567 DSA-2832 MDVSA-2013:280 http://www.mandriva.com/security/advisories?name=MDVSA-2013:280 USN-2080-1 http://insecurety.net/?p=872 https://code.google.com/p/memcached/issues/detail?id=192 https://puppet.com/security/cve/cve-2011-4971 Common Vulnerability Exposure (CVE) ID: CVE-2013-0179 64978 http://www.securityfocus.com/bid/64978 [oss-security] 20130114 CVE request: memcached DoS when printing out keys to be deleted in verbose mode http://www.openwall.com/lists/oss-security/2013/01/14/4 [oss-security] 20130114 Re: CVE request: memcached DoS when printing out keys to be deleted in verbose mode http://www.openwall.com/lists/oss-security/2013/01/14/6 https://bugzilla.redhat.com/show_bug.cgi?id=895054 https://code.google.com/p/memcached/issues/attachmentText?id=306&aid=3060004000&name=0001-Fix-buffer-overrun-when-logging-key-to-delete-in-bin.patch&token=3GEzHThBL5cxmUrsYANkW03RrNY%3A1358179503096 https://code.google.com/p/memcached/issues/detail?id=306 https://code.google.com/p/memcached/wiki/ReleaseNotes1417 Common Vulnerability Exposure (CVE) ID: CVE-2013-7290 BugTraq ID: 64988 http://www.securityfocus.com/bid/64988 Common Vulnerability Exposure (CVE) ID: CVE-2013-7291 BugTraq ID: 64989 http://www.securityfocus.com/bid/64989
Copyright	Copyright (C) 2015 Eero Volotinen