Overview

File _patchinfo of Package patchinfo.7125

<patchinfo incident="7125">
  <issue id="1077718" tracker="bnc">AUDIT-0: memcached: remove world-readable permissions from home directory</issue>
  <issue id="1083903" tracker="bnc">VUL-1: CVE-2018-1000115: memcached: UDP server support allows spoofed traffic amplification DoS</issue>
  <issue id="2018-1000115" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>simotek</packager>
  <description>This update for memcached fixes the following issues:

- CVE-2018-1000115: Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability 
in the UDP support of the memcached server could result in denial of service via network flood 
(traffic amplification of 1:50,000 has been reported by reliable sources). (bsc#1083903)

- Home directory shouldn't be world readable bsc#1077718
</description>
  <summary>Security update for memcached</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places