VulnerableCode Package Details - pkg:ebuild/net-misc/memcached@1.4.17

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-cm45-8gft-jqhd	The do_item_get function in items.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr, a different vulnerability than CVE-2013-0179.	CVE-2013-7290
VCID-d17x-z4pz-8bgq	Multiple integer overflows in memcached 1.1.12 and 1.2.2 allow remote attackers to execute arbitrary code via vectors involving length attributes that trigger heap-based buffer overflows.	CVE-2009-2415
VCID-hsuj-2gvt-9bc1	memcached before 1.4.17 allows remote attackers to bypass authentication by sending an invalid request with SASL credentials, then sending another request with incorrect SASL credentials.	CVE-2013-7239
VCID-v9vn-ckw2-bucw	memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (crash) via a request that triggers an "unbounded key print" during logging, related to an issue that was "quickly grepped out of the source tree," a different vulnerability than CVE-2013-0179 and CVE-2013-7290.	CVE-2013-7291
VCID-xsfx-vjd9-puae	The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr.	CVE-2013-0179
VCID-yqd7-9a4n-pbgb	Multiple integer signedness errors in the (1) process_bin_sasl_auth, (2) process_bin_complete_sasl_auth, (3) process_bin_update, and (4) process_bin_append_prepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service (crash) via a large body length value in a packet.	CVE-2011-4971

Vulnerability

Summary

Aliases

VCID-cm45-8gft-jqhd

The do_item_get function in items.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr, a different vulnerability than CVE-2013-0179.

CVE-2013-7290

VCID-d17x-z4pz-8bgq

Multiple integer overflows in memcached 1.1.12 and 1.2.2 allow remote attackers to execute arbitrary code via vectors involving length attributes that trigger heap-based buffer overflows.

CVE-2009-2415

VCID-hsuj-2gvt-9bc1

memcached before 1.4.17 allows remote attackers to bypass authentication by sending an invalid request with SASL credentials, then sending another request with incorrect SASL credentials.

CVE-2013-7239

VCID-v9vn-ckw2-bucw

memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (crash) via a request that triggers an "unbounded key print" during logging, related to an issue that was "quickly grepped out of the source tree," a different vulnerability than CVE-2013-0179 and CVE-2013-7290.

CVE-2013-7291

VCID-xsfx-vjd9-puae

The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr.

CVE-2013-0179

VCID-yqd7-9a4n-pbgb

Multiple integer signedness errors in the (1) process_bin_sasl_auth, (2) process_bin_complete_sasl_auth, (3) process_bin_update, and (4) process_bin_append_prepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service (crash) via a large body length value in a packet.

CVE-2011-4971

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-04T19:12:34.317026+00:00	Gentoo Importer	Fixing	VCID-v9vn-ckw2-bucw	https://security.gentoo.org/glsa/201406-13	38.6.0
2026-06-04T19:12:34.299419+00:00	Gentoo Importer	Fixing	VCID-cm45-8gft-jqhd	https://security.gentoo.org/glsa/201406-13	38.6.0
2026-06-04T19:12:34.281944+00:00	Gentoo Importer	Fixing	VCID-xsfx-vjd9-puae	https://security.gentoo.org/glsa/201406-13	38.6.0
2026-06-04T19:12:34.264459+00:00	Gentoo Importer	Fixing	VCID-yqd7-9a4n-pbgb	https://security.gentoo.org/glsa/201406-13	38.6.0
2026-06-04T19:12:34.246823+00:00	Gentoo Importer	Fixing	VCID-hsuj-2gvt-9bc1	https://security.gentoo.org/glsa/201406-13	38.6.0
2026-06-04T19:12:34.229473+00:00	Gentoo Importer	Fixing	VCID-d17x-z4pz-8bgq	https://security.gentoo.org/glsa/201406-13	38.6.0