Security update for memcached
This update for memcached fixes the following issues:
- CVE-2018-1000115: Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability
in the UDP support of the memcached server could result in denial of service via network flood
(traffic amplification of 1:50,000 has been reported by reliable sources). (bsc#1083903)
- Home directory shouldn't be world readable bsc#1077718
This update was imported from the SUSE:SLE-12:Update update project.
-
Submitted by
Simon Lees (simotek)
Fixed bugs
bnc#1077718
AUDIT-0: memcached: remove world-readable permissions from home directory
bnc#1083903
VUL-1: CVE-2018-1000115: memcached: UDP server support allows spoofed traffic amplification DoS
