Launchpad CVE tracker

CVE 2013-7239

memcached before 1.4.17 allows remote attackers to bypass authentication by sending an invalid request with SASL credentials, then sending another request with incorrect SASL credentials.

Related bugs and status

CVE-2013-7239 (Candidate) is related to these bugs:

Bug #1255328: Installing memcached package creates /nonexistent

Summary				In	Importance	Status
	1255328	Installing memcached package creates /nonexistent		memcached (Ubuntu)	Medium	Fix Released

Bug #1462747: Please merge with latest upstream from Debian

Summary				In	Importance	Status
	1462747	Please merge with latest upstream from Debian		memcached (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2013123...
CONFIRM: https://code.google.co...
DEBIAN: DSA-2832
SECUNIA: 56183
UBUNTU: USN-2080-1
BID: 64559

Launchpad.net

CVE 2013-7239

Related bugs and status

Related bugs

References