Back to bug 1390512
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Andrej Nemec | 2016-11-01 09:44:26 UTC | Depends On | 1390513 | |
| Andrej Nemec | 2016-11-01 09:44:38 UTC | Depends On | 1390514 | |
| Andrej Nemec | 2016-11-01 09:47:26 UTC | Blocks | 1390516 | |
| Salvatore Bonaccorso | 2016-11-01 16:06:31 UTC | CC | carnil | |
| Doran Moppert | 2016-11-02 06:58:19 UTC | Whiteboard | impact=important,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=9.8/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=new,rhel-7/memcached=new,openstack-7/memcached=new,openstack-8/memcached=new,openstack-9/memcached=new,openstack-10/memcached=new | impact=important,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=9.8/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=notaffected,openstack-7/memcached=new,openstack-8/memcached=new,openstack-9/memcached=new,openstack-10/memcached=new |
| Doran Moppert | 2016-11-02 07:28:26 UTC | Priority | high | medium |
| Whiteboard | impact=important,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=9.8/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=notaffected,openstack-7/memcached=new,openstack-8/memcached=new,openstack-9/memcached=new,openstack-10/memcached=new | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=notaffected,openstack-7/memcached=new,openstack-8/memcached=new,openstack-9/memcached=new,openstack-10/memcached=new | ||
| Severity | high | medium | ||
| Doran Moppert | 2016-11-02 07:29:34 UTC | CC | dmoppert | |
| Summary | CVE-2016-8706 memcached: Server ASL authentication remote code execution | CVE-2016-8706 memcached: SASL authentication remote code execution | ||
| Doran Moppert | 2016-11-02 07:40:24 UTC | Whiteboard | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=notaffected,openstack-7/memcached=new,openstack-8/memcached=new,openstack-9/memcached=new,openstack-10/memcached=new | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=new,openstack-8/memcached=new,openstack-9/memcached=new,openstack-10/memcached=new |
| Garth Mollett | 2016-11-02 21:49:21 UTC | Whiteboard | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=new,openstack-8/memcached=new,openstack-9/memcached=new,openstack-10/memcached=new | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=affected,openstack-8/memcached=affected,openstack-9/memcached=affected,openstack-10/memcached=affected |
| Garth Mollett | 2016-11-02 21:49:57 UTC | Depends On | 1391260 | |
| Garth Mollett | 2016-11-02 21:50:10 UTC | Depends On | 1391261 | |
| Garth Mollett | 2016-11-02 21:50:22 UTC | Depends On | 1391262 | |
| Garth Mollett | 2016-11-02 21:50:34 UTC | Depends On | 1391263 | |
| Doran Moppert | 2016-11-07 04:19:53 UTC | Depends On | 1392273 | |
| Doran Moppert | 2016-11-07 04:19:59 UTC | Depends On | 1392274 | |
| Doran Moppert | 2016-11-07 04:22:30 UTC | Doc Text | An integer overflow flaw, leading to a heap-based buffer overflow, was found in memcached's parsing of SASL authentication messages. An attacker could create a specially crafted message that would cause the memcached server to crash or, potentially, execute arbitrary code. | |
| Jason Shepherd | 2016-11-08 22:27:21 UTC | Blocks | 1393126 | |
| Garth Mollett | 2016-11-08 23:26:03 UTC | Whiteboard | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=affected,openstack-8/memcached=affected,openstack-9/memcached=affected,openstack-10/memcached=affected | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=notaffected,openstack-8/memcached=notaffected,openstack-9/memcached=affected,openstack-10/memcached=affected |
| Garth Mollett | 2016-11-08 23:27:00 UTC | Depends On | 1391261 | |
| Garth Mollett | 2016-11-08 23:27:11 UTC | Depends On | 1391260 | |
| Jason Shepherd | 2016-11-09 02:00:55 UTC | Whiteboard | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=notaffected,openstack-8/memcached=notaffected,openstack-9/memcached=affected,openstack-10/memcached=affected | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=notaffected,openstack-8/memcached=notaffected,openstack-9/memcached=affected,openstack-10/memcached=affected,rhmap-4/memcached=notaffected |
| Jason Shepherd | 2016-11-09 02:01:07 UTC | CC | avibelli, coneill, gsterlin, jbalunas, jshepherd, rrajasek, tjay, tkirby | |
| Yasuhiro Ozone | 2016-11-14 03:38:08 UTC | CC | yozone | |
| Garth Mollett | 2016-11-21 21:42:03 UTC | Whiteboard | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=notaffected,openstack-8/memcached=notaffected,openstack-9/memcached=affected,openstack-10/memcached=affected,rhmap-4/memcached=notaffected | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=notaffected,openstack-8/memcached=notaffected,openstack-9/memcached=wontfix,openstack-10/memcached=notaffected,rhmap-4/memcached=notaffected |
| Garth Mollett | 2016-11-24 05:54:41 UTC | CC | gmollett | |
| Garth Mollett | 2016-11-24 05:58:07 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-11-24 00:58:07 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:59:56 UTC | Whiteboard | impact=moderate,public=20161031,reported=20161031,source=oss-security,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-190->CWE-122,fedora-all/memcached=affected,epel-5/memcached=affected,rhel-6/memcached=notaffected,rhel-7/memcached=affected,openstack-7/memcached=notaffected,openstack-8/memcached=notaffected,openstack-9/memcached=wontfix,openstack-10/memcached=notaffected,rhmap-4/memcached=notaffected |
Back to bug 1390512