Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-1000115 (GCVE-0-2018-1000115)
Vulnerability from cvelistv5 – Published: 2018-03-05 14:00 – Updated: 2024-08-05 12:33
VLAI
EPSS
Summary
Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.
Severity
7.5 (High)
CWE
- n/a
Assigner
References
15 references
Date Public
2018-03-02 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T12:33:49.333Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHBA-2018:2140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"name": "RHSA-2018:1593",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"name": "USN-3588-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3588-1/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/memcached/memcached/wiki/ReleaseNotes156"
},
{
"name": "44264",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "https://www.exploit-db.com/exploits/44264/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://twitter.com/dormando/status/968579781729009664"
},
{
"name": "44265",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "https://www.exploit-db.com/exploits/44265/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974"
},
{
"name": "RHSA-2018:2857",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2857"
},
{
"name": "RHSA-2018:1627",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"name": "RHSA-2018:2331",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2331"
},
{
"name": "DSA-4218",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2018/dsa-4218"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/memcached/memcached/issues/348"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.synology.com/support/security/Synology_SA_18_07"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"dateAssigned": "2018-03-02T00:00:00.000Z",
"datePublic": "2018-03-02T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-03T09:57:02.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "RHBA-2018:2140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"name": "RHSA-2018:1593",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"name": "USN-3588-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3588-1/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/memcached/memcached/wiki/ReleaseNotes156"
},
{
"name": "44264",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "https://www.exploit-db.com/exploits/44264/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://twitter.com/dormando/status/968579781729009664"
},
{
"name": "44265",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "https://www.exploit-db.com/exploits/44265/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974"
},
{
"name": "RHSA-2018:2857",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2857"
},
{
"name": "RHSA-2018:1627",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"name": "RHSA-2018:2331",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2331"
},
{
"name": "DSA-4218",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2018/dsa-4218"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/memcached/memcached/issues/348"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.synology.com/support/security/Synology_SA_18_07"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"DATE_ASSIGNED": "3/2/2018 21:30:48",
"ID": "CVE-2018-1000115",
"REQUESTER": "kurt@seifried.org",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHBA-2018:2140",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"name": "RHSA-2018:1593",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"name": "USN-3588-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3588-1/"
},
{
"name": "https://github.com/memcached/memcached/wiki/ReleaseNotes156",
"refsource": "MISC",
"url": "https://github.com/memcached/memcached/wiki/ReleaseNotes156"
},
{
"name": "44264",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/44264/"
},
{
"name": "https://twitter.com/dormando/status/968579781729009664",
"refsource": "MISC",
"url": "https://twitter.com/dormando/status/968579781729009664"
},
{
"name": "44265",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/44265/"
},
{
"name": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974",
"refsource": "MISC",
"url": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974"
},
{
"name": "RHSA-2018:2857",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2857"
},
{
"name": "RHSA-2018:1627",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"name": "RHSA-2018:2331",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2331"
},
{
"name": "DSA-4218",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4218"
},
{
"name": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html",
"refsource": "MISC",
"url": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html"
},
{
"name": "https://github.com/memcached/memcached/issues/348",
"refsource": "MISC",
"url": "https://github.com/memcached/memcached/issues/348"
},
{
"name": "https://www.synology.com/support/security/Synology_SA_18_07",
"refsource": "CONFIRM",
"url": "https://www.synology.com/support/security/Synology_SA_18_07"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2018-1000115",
"datePublished": "2018-03-05T14:00:00.000Z",
"dateReserved": "2018-03-05T00:00:00.000Z",
"dateUpdated": "2024-08-05T12:33:49.333Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-1000115",
"date": "2026-06-05",
"epss": "0.86753",
"percentile": "0.99443"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-1000115\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2018-03-05T14:29:00.203\",\"lastModified\":\"2024-11-21T03:39:40.657\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.\"},{\"lang\":\"es\",\"value\":\"Memcached 1.5.5 contiene una vulnerabilidad de control insuficiente de volumen de mensaje de red (amplificaci\u00f3n de red, CWE-406) en el soporte UDP del servidor memcached que puede resultar en una denegaci\u00f3n de servicio (DoS) mediante una inundaci\u00f3n de red (fuentes fiables reportan una amplificaci\u00f3n de tr\u00e1fico de 1:50.000). Este ataque parece ser explotable mediante conectividad de red en el puerto UDP 11211. Parece ser que esta vulnerabilidad se ha solucionado en la versi\u00f3n 1.5.6 debido a que se deshabilita por defecto el protocolo UDP.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:memcached:memcached:1.5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81CD27E0-30C4-484D-A846-6121C88C49EA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9070C9D8-A14A-467F-8253-33B966C16886\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8B8C725-34CF-4340-BE7B-37E58CF706D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F40C26BE-56CB-4022-A1D8-3CA0A8F87F4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E722FEF7-58A6-47AD-B1D0-DB0B71B0C7AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E9AF77C-5D49-4842-9817-AD710A919073\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D4AC996-B340-4A14-86F7-FF83B4D5EC8F\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHBA-2018:2140\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1593\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1627\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2331\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2857\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/memcached/memcached/issues/348\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/memcached/memcached/wiki/ReleaseNotes156\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://twitter.com/dormando/status/968579781729009664\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3588-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4218\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.exploit-db.com/exploits/44264/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/44265/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.synology.com/support/security/Synology_SA_18_07\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHBA-2018:2140\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1593\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1627\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2331\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2857\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/memcached/memcached/issues/348\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/memcached/memcached/wiki/ReleaseNotes156\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://twitter.com/dormando/status/968579781729009664\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3588-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4218\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.exploit-db.com/exploits/44264/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/44265/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.synology.com/support/security/Synology_SA_18_07\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
CERTFR-2018-AVI-339
Vulnerability from certfr_avis - Published: 2018-07-12 - Updated: 2018-07-12
De multiples vulnérabilités ont été découvertes dans les produits Juniper . Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | N/A | Contrail Service Orchestration (CSO) versions antérieures à 4.0.0 et 3.3.0 | ||
| Juniper Networks | Junos Space | Junos Space versions antérieures à 18.1R1 | ||
| Juniper Networks | Junos OS | Junos OS versions antérieures à 12.1X46-D45, 12.1X46-D67, 12.1X46-D76, 12.1X46-D77, 12.3R11, 12.3R12-S10, 12.3X48-D20, 12.3X48-D25, 12.3X48-D55, 12.3X48-D66, 12.3X48-D70, 12.3X54-D34, 14.1X53-D30, 14.1X53-D47, 15.1F5-S5, 15.1F6-S1, 15.1F6-S10, 15.1F7, 15.1R4-S5, 15.1R4-S9, 15.1R5, 15.1R6-S6, 15.1R7, 15.1R7-S1, 15.1R8, 15.1X49-D110, 15.1X49-D131, 15.1X49-D140, 15.1X49-D20, 15.1X49-D35, 15.1X53-D233, 15.1X53-D234, 15.1X53-D47, 15.1X53-D470, 15.1X53-D471, 15.1X53-D490, 15.1X53-D59, 15.1X53-D60, 15.1X53-D67, 15.1X54-D70, 15.1X8.3, 16.1R2, 16.1R3, 16.1R3-S8, 16.1R3-S9, 16.1R4-S10, 16.1R4-S8, 16.1R4-S9, 16.1R5-S4, 16.1R6-S1, 16.1R6-S3, 16.1R6-S4, 16.1R7, 16.1X65-D46, 16.1X65-D47, 16.2R1, 16.2R1-S6, 16.2R1-S7, 16.2R2-S5, 16.2R2-S6, 16.2R3, 17.1R1-S7, 17.1R2-S7, 17.1R3, 17.2R1-S4, 17.2R1-S6, 17.2R2-S4, 17.2R2-S5, 17.2R3, 17.2X75-D100, 17.2X75-D110, 17.2X75-D70, 17.2X75-D90, 17.2X75-D91, 17.3R1, 17.3R1-S4, 17.3R2, 17.3R2-S2, 17.3R3, 17.4R1-S2, 17.4R1-S3, 17.4R1-S4, 17.4R2, 18.1R1, 18.1R2, 18.1X75-D10, 18.2R1, 18.2X75-D10 et 18.2X75-D5 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Contrail Service Orchestration (CSO) versions ant\u00e9rieures \u00e0 4.0.0 et 3.3.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space versions ant\u00e9rieures \u00e0 18.1R1",
"product": {
"name": "Junos Space",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions ant\u00e9rieures \u00e0 12.1X46-D45, 12.1X46-D67, 12.1X46-D76, 12.1X46-D77, 12.3R11, 12.3R12-S10, 12.3X48-D20, 12.3X48-D25, 12.3X48-D55, 12.3X48-D66, 12.3X48-D70, 12.3X54-D34, 14.1X53-D30, 14.1X53-D47, 15.1F5-S5, 15.1F6-S1, 15.1F6-S10, 15.1F7, 15.1R4-S5, 15.1R4-S9, 15.1R5, 15.1R6-S6, 15.1R7, 15.1R7-S1, 15.1R8, 15.1X49-D110, 15.1X49-D131, 15.1X49-D140, 15.1X49-D20, 15.1X49-D35, 15.1X53-D233, 15.1X53-D234, 15.1X53-D47, 15.1X53-D470, 15.1X53-D471, 15.1X53-D490, 15.1X53-D59, 15.1X53-D60, 15.1X53-D67, 15.1X54-D70, 15.1X8.3, 16.1R2, 16.1R3, 16.1R3-S8, 16.1R3-S9, 16.1R4-S10, 16.1R4-S8, 16.1R4-S9, 16.1R5-S4, 16.1R6-S1, 16.1R6-S3, 16.1R6-S4, 16.1R7, 16.1X65-D46, 16.1X65-D47, 16.2R1, 16.2R1-S6, 16.2R1-S7, 16.2R2-S5, 16.2R2-S6, 16.2R3, 17.1R1-S7, 17.1R2-S7, 17.1R3, 17.2R1-S4, 17.2R1-S6, 17.2R2-S4, 17.2R2-S5, 17.2R3, 17.2X75-D100, 17.2X75-D110, 17.2X75-D70, 17.2X75-D90, 17.2X75-D91, 17.3R1, 17.3R1-S4, 17.3R2, 17.3R2-S2, 17.3R3, 17.4R1-S2, 17.4R1-S3, 17.4R1-S4, 17.4R2, 18.1R1, 18.1R2, 18.1X75-D10, 18.2R1, 18.2X75-D10 et 18.2X75-D5",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2017-7407",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7407"
},
{
"name": "CVE-2018-0027",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0027"
},
{
"name": "CVE-2016-8615",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8615"
},
{
"name": "CVE-2015-3153",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-3153"
},
{
"name": "CVE-2018-0024",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0024"
},
{
"name": "CVE-2017-1000257",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000257"
},
{
"name": "CVE-2016-8619",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8619"
},
{
"name": "CVE-2013-1944",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1944"
},
{
"name": "CVE-2018-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2603"
},
{
"name": "CVE-2017-8818",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8818"
},
{
"name": "CVE-2018-0031",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0031"
},
{
"name": "CVE-2018-0035",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0035"
},
{
"name": "CVE-2018-1000115",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000115"
},
{
"name": "CVE-2016-9952",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-9952"
},
{
"name": "CVE-2017-10295",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10295"
},
{
"name": "CVE-2013-4545",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4545"
},
{
"name": "CVE-2015-7236",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7236"
},
{
"name": "CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"name": "CVE-2016-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4802"
},
{
"name": "CVE-2017-10388",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10388"
},
{
"name": "CVE-2016-9953",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-9953"
},
{
"name": "CVE-2016-8624",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8624"
},
{
"name": "CVE-2018-0039",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0039"
},
{
"name": "CVE-2016-8616",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8616"
},
{
"name": "CVE-2015-3148",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-3148"
},
{
"name": "CVE-2016-8620",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8620"
},
{
"name": "CVE-2014-3613",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3613"
},
{
"name": "CVE-2018-1000121",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000121"
},
{
"name": "CVE-2013-6422",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-6422"
},
{
"name": "CVE-2018-0042",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0042"
},
{
"name": "CVE-2018-2618",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2618"
},
{
"name": "CVE-2018-1000005",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000005"
},
{
"name": "CVE-2016-8617",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8617"
},
{
"name": "CVE-2016-0754",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0754"
},
{
"name": "CVE-2017-1000101",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000101"
},
{
"name": "CVE-2018-1000120",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000120"
},
{
"name": "CVE-2014-8150",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8150"
},
{
"name": "CVE-2014-3707",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3707"
},
{
"name": "CVE-2016-8618",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8618"
},
{
"name": "CVE-2018-0037",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0037"
},
{
"name": "CVE-2015-3143",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-3143"
},
{
"name": "CVE-2018-0040",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0040"
},
{
"name": "CVE-2016-5419",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5419"
},
{
"name": "CVE-2017-12613",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12613"
},
{
"name": "CVE-2018-2637",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2637"
},
{
"name": "CVE-2017-10198",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10198"
},
{
"name": "CVE-2017-10355",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10355"
},
{
"name": "CVE-2016-8623",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8623"
},
{
"name": "CVE-2017-5754",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5754"
},
{
"name": "CVE-2016-3739",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3739"
},
{
"name": "CVE-2018-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2663"
},
{
"name": "CVE-2017-15896",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15896"
},
{
"name": "CVE-2018-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2579"
},
{
"name": "CVE-2017-8816",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8816"
},
{
"name": "CVE-2017-5753",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5753"
},
{
"name": "CVE-2016-7167",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7167"
},
{
"name": "CVE-2017-9502",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-9502"
},
{
"name": "CVE-2018-0030",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0030"
},
{
"name": "CVE-2018-0034",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0034"
},
{
"name": "CVE-2018-2633",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2633"
},
{
"name": "CVE-2000-0973",
"url": "https://www.cve.org/CVERecord?id=CVE-2000-0973"
},
{
"name": "CVE-2014-0139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0139"
},
{
"name": "CVE-2016-5420",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5420"
},
{
"name": "CVE-2016-7141",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7141"
},
{
"name": "CVE-2014-0138",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0138"
},
{
"name": "CVE-2016-8621",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8621"
},
{
"name": "CVE-2018-0029",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0029"
},
{
"name": "CVE-2018-0025",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0025"
},
{
"name": "CVE-2017-1000254",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000254"
},
{
"name": "CVE-2018-2599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2599"
},
{
"name": "CVE-2017-8817",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8817"
},
{
"name": "CVE-2017-10356",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10356"
},
{
"name": "CVE-2018-0038",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0038"
},
{
"name": "CVE-2016-9586",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-9586"
},
{
"name": "CVE-2017-1000100",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000100"
},
{
"name": "CVE-2017-10345",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10345"
},
{
"name": "CVE-2018-0041",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0041"
},
{
"name": "CVE-2017-5715",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5715"
},
{
"name": "CVE-2018-2629",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2629"
},
{
"name": "CVE-2016-8622",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8622"
},
{
"name": "CVE-2013-2174",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2174"
},
{
"name": "CVE-2018-1000007",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000007"
},
{
"name": "CVE-2018-0032",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0032"
},
{
"name": "CVE-2016-5421",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5421"
},
{
"name": "CVE-2018-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2678"
},
{
"name": "CVE-2014-0015",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0015"
},
{
"name": "CVE-2017-1000099",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000099"
},
{
"name": "CVE-2018-2588",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2588"
},
{
"name": "CVE-2018-1000122",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000122"
},
{
"name": "CVE-2017-3145",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3145"
},
{
"name": "CVE-2016-8625",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8625"
},
{
"name": "CVE-2018-0026",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0026"
},
{
"name": "CVE-2016-0755",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0755"
}
],
"initial_release_date": "2018-07-12T00:00:00",
"last_revision_date": "2018-07-12T00:00:00",
"links": [],
"reference": "CERTFR-2018-AVI-339",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2018-07-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nJuniper . Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nun probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de\ncode arbitraire \u00e0 distance et un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10869 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10869\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10866 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10866\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10874 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10874\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10863 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10863\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10871 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10871\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10857 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10857\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10868 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10868\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10859 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10859\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10872 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10872\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10858 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10858\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10861 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10861\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10860 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10860\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10864 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10864\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10873 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10873\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10865 du 11 juillet 2018",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10865\u0026cat=SIRT_1\u0026actp=LIST"
}
]
}
CERTFR-2019-AVI-023
Vulnerability from certfr_avis - Published: 2019-01-16 - Updated: 2019-01-16
De multiples vulnérabilités ont été découvertes dans Oracle Sun Systems. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Tape Library ACSLS version 8.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Sun ZFS Storage Appliance Kit (AK) versions ant\u00e9rieures \u00e0 8.8.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Solaris versions 10 et 11",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-6913",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6913"
},
{
"name": "CVE-2017-1000456",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000456"
},
{
"name": "CVE-2018-19628",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19628"
},
{
"name": "CVE-2018-19158",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19158"
},
{
"name": "CVE-2018-13988",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-13988"
},
{
"name": "CVE-2017-14517",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14517"
},
{
"name": "CVE-2018-3282",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3282"
},
{
"name": "CVE-2016-0635",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0635"
},
{
"name": "CVE-2018-0739",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0739"
},
{
"name": "CVE-2018-1000115",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000115"
},
{
"name": "CVE-2018-9918",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9918"
},
{
"name": "CVE-2019-2545",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2545"
},
{
"name": "CVE-2019-2541",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2541"
},
{
"name": "CVE-2018-0734",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-0734"
},
{
"name": "CVE-2019-2544",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2544"
},
{
"name": "CVE-2018-3247",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3247"
},
{
"name": "CVE-2018-1275",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1275"
},
{
"name": "CVE-2018-3639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3639"
},
{
"name": "CVE-2019-2543",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2543"
},
{
"name": "CVE-2017-5645",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5645"
},
{
"name": "CVE-2017-18267",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18267"
},
{
"name": "CVE-2019-2412",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2412"
},
{
"name": "CVE-2016-8705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8705"
},
{
"name": "CVE-2018-17183",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17183"
},
{
"name": "CVE-2019-2437",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2437"
},
{
"name": "CVE-2018-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3646"
},
{
"name": "CVE-2018-5407",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5407"
},
{
"name": "CVE-2018-3070",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3070"
},
{
"name": "CVE-2018-15909",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15909"
},
{
"name": "CVE-2018-11763",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11763"
}
],
"initial_release_date": "2019-01-16T00:00:00",
"last_revision_date": "2019-01-16T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-023",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-01-16T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle Sun Systems.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un\nprobl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, un d\u00e9ni de service \u00e0\ndistance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle Sun Systems",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpujan2019-5072801 du 15 janvier 2019",
"url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html#AppendixSUNS"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle bulletinjan2019-5251593 du 15 janvier 2019",
"url": "https://www.oracle.com/technetwork/topics/security/bulletinjan2019-5251593.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpujan2019verbose-5072807 du 15 janvier 2019",
"url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019verbose-5072807.html#SUNS"
}
]
}
Title
Memcached拒绝服务漏洞
Description
Memcached是美国软件开发者布莱德-菲兹派翠克(Brad Fitzpatrick)所研发的一套高性能的分布式内存对象缓存系统。该系统通过在内存中缓存数据和对象来减少读取数据库的次数,从而提高网站访问速度。
Memcached 1.5.5版本中存在安全漏洞,该漏洞源于程序未能充分的限制Network Message Volume。攻击者可利用该漏洞造成拒绝服务。
Severity
中
Patch Name
Memcached拒绝服务漏洞的补丁
Patch Description
Memcached是美国软件开发者布莱德-菲兹派翠克(Brad Fitzpatrick)所研发的一套高性能的分布式内存对象缓存系统。该系统通过在内存中缓存数据和对象来减少读取数据库的次数,从而提高网站访问速度。
Memcached 1.5.5版本中存在安全漏洞,该漏洞源于程序未能充分的限制Network Message Volume。攻击者可利用该漏洞造成拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://github.com/memcached/memcached/wiki/ReleaseNotes156
Reference
https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html
https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974
https://www.exploit-db.com/exploits/44264/
Impacted products
| Name | Memcached Memcached 1.5.5 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2018-1000115"
}
},
"description": "Memcached\u662f\u7f8e\u56fd\u8f6f\u4ef6\u5f00\u53d1\u8005\u5e03\u83b1\u5fb7-\u83f2\u5179\u6d3e\u7fe0\u514b\uff08Brad Fitzpatrick\uff09\u6240\u7814\u53d1\u7684\u4e00\u5957\u9ad8\u6027\u80fd\u7684\u5206\u5e03\u5f0f\u5185\u5b58\u5bf9\u8c61\u7f13\u5b58\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u901a\u8fc7\u5728\u5185\u5b58\u4e2d\u7f13\u5b58\u6570\u636e\u548c\u5bf9\u8c61\u6765\u51cf\u5c11\u8bfb\u53d6\u6570\u636e\u5e93\u7684\u6b21\u6570\uff0c\u4ece\u800c\u63d0\u9ad8\u7f51\u7ad9\u8bbf\u95ee\u901f\u5ea6\u3002\r\n\r\nMemcached 1.5.5\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u5145\u5206\u7684\u9650\u5236Network Message Volume\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
"discovererName": "anonymous",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://github.com/memcached/memcached/wiki/ReleaseNotes156",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2018-04860",
"openTime": "2018-03-12",
"patchDescription": "Memcached\u662f\u7f8e\u56fd\u8f6f\u4ef6\u5f00\u53d1\u8005\u5e03\u83b1\u5fb7-\u83f2\u5179\u6d3e\u7fe0\u514b\uff08Brad Fitzpatrick\uff09\u6240\u7814\u53d1\u7684\u4e00\u5957\u9ad8\u6027\u80fd\u7684\u5206\u5e03\u5f0f\u5185\u5b58\u5bf9\u8c61\u7f13\u5b58\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u901a\u8fc7\u5728\u5185\u5b58\u4e2d\u7f13\u5b58\u6570\u636e\u548c\u5bf9\u8c61\u6765\u51cf\u5c11\u8bfb\u53d6\u6570\u636e\u5e93\u7684\u6b21\u6570\uff0c\u4ece\u800c\u63d0\u9ad8\u7f51\u7ad9\u8bbf\u95ee\u901f\u5ea6\u3002\r\n\r\nMemcached 1.5.5\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u5145\u5206\u7684\u9650\u5236Network Message Volume\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Memcached\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Memcached Memcached 1.5.5"
},
"referenceLink": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html\r\nhttps://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974\r\nhttps://www.exploit-db.com/exploits/44264/",
"serverity": "\u4e2d",
"submitTime": "2018-03-07",
"title": "Memcached\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}
FKIE_CVE-2018-1000115
Vulnerability from fkie_nvd - Published: 2018-03-05 14:29 - Updated: 2024-11-21 03:39
Severity
Summary
Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://access.redhat.com/errata/RHBA-2018:2140 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2018:1593 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2018:1627 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2018:2331 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2018:2857 | Third Party Advisory | |
| cve@mitre.org | https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html | Third Party Advisory | |
| cve@mitre.org | https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974 | Patch, Third Party Advisory | |
| cve@mitre.org | https://github.com/memcached/memcached/issues/348 | Issue Tracking, Third Party Advisory | |
| cve@mitre.org | https://github.com/memcached/memcached/wiki/ReleaseNotes156 | Third Party Advisory | |
| cve@mitre.org | https://twitter.com/dormando/status/968579781729009664 | Third Party Advisory | |
| cve@mitre.org | https://usn.ubuntu.com/3588-1/ | Third Party Advisory | |
| cve@mitre.org | https://www.debian.org/security/2018/dsa-4218 | Third Party Advisory | |
| cve@mitre.org | https://www.exploit-db.com/exploits/44264/ | Exploit, Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://www.exploit-db.com/exploits/44265/ | Exploit, Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://www.synology.com/support/security/Synology_SA_18_07 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHBA-2018:2140 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:1593 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:1627 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:2331 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:2857 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/memcached/memcached/issues/348 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/memcached/memcached/wiki/ReleaseNotes156 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://twitter.com/dormando/status/968579781729009664 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/3588-1/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2018/dsa-4218 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.exploit-db.com/exploits/44264/ | Exploit, Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.exploit-db.com/exploits/44265/ | Exploit, Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.synology.com/support/security/Synology_SA_18_07 | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| memcached | memcached | 1.5.5 | |
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 17.10 | |
| debian | debian_linux | 8.0 | |
| debian | debian_linux | 9.0 | |
| redhat | openstack | 8 | |
| redhat | openstack | 9 | |
| redhat | openstack | 10 | |
| redhat | openstack | 11 | |
| redhat | openstack | 12 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:memcached:memcached:1.5.5:*:*:*:*:*:*:*",
"matchCriteriaId": "81CD27E0-30C4-484D-A846-6121C88C49EA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*",
"matchCriteriaId": "9070C9D8-A14A-467F-8253-33B966C16886",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*",
"matchCriteriaId": "E8B8C725-34CF-4340-BE7B-37E58CF706D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*",
"matchCriteriaId": "F40C26BE-56CB-4022-A1D8-3CA0A8F87F4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*",
"matchCriteriaId": "E722FEF7-58A6-47AD-B1D0-DB0B71B0C7AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*",
"matchCriteriaId": "4E9AF77C-5D49-4842-9817-AD710A919073",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*",
"matchCriteriaId": "4D4AC996-B340-4A14-86F7-FF83B4D5EC8F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default."
},
{
"lang": "es",
"value": "Memcached 1.5.5 contiene una vulnerabilidad de control insuficiente de volumen de mensaje de red (amplificaci\u00f3n de red, CWE-406) en el soporte UDP del servidor memcached que puede resultar en una denegaci\u00f3n de servicio (DoS) mediante una inundaci\u00f3n de red (fuentes fiables reportan una amplificaci\u00f3n de tr\u00e1fico de 1:50.000). Este ataque parece ser explotable mediante conectividad de red en el puerto UDP 11211. Parece ser que esta vulnerabilidad se ha solucionado en la versi\u00f3n 1.5.6 debido a que se deshabilita por defecto el protocolo UDP."
}
],
"id": "CVE-2018-1000115",
"lastModified": "2024-11-21T03:39:40.657",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-03-05T14:29:00.203",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2331"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2857"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/issues/348"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/wiki/ReleaseNotes156"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://twitter.com/dormando/status/968579781729009664"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3588-1/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4218"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/44264/"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/44265/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.synology.com/support/security/Synology_SA_18_07"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2331"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2857"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/issues/348"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/wiki/ReleaseNotes156"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://twitter.com/dormando/status/968579781729009664"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3588-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4218"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/44264/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/44265/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.synology.com/support/security/Synology_SA_18_07"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-F4XM-W85J-GC55
Vulnerability from github – Published: 2022-05-13 01:07 – Updated: 2022-05-13 01:07
VLAI
Details
Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.
Severity
7.5 (High)
{
"affected": [],
"aliases": [
"CVE-2018-1000115"
],
"database_specific": {
"cwe_ids": [
"CWE-400"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-03-05T14:29:00Z",
"severity": "HIGH"
},
"details": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.",
"id": "GHSA-f4xm-w85j-gc55",
"modified": "2022-05-13T01:07:32Z",
"published": "2022-05-13T01:07:32Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000115"
},
{
"type": "WEB",
"url": "https://github.com/memcached/memcached/issues/348"
},
{
"type": "WEB",
"url": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:2331"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:2857"
},
{
"type": "WEB",
"url": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html"
},
{
"type": "WEB",
"url": "https://github.com/memcached/memcached/wiki/ReleaseNotes156"
},
{
"type": "WEB",
"url": "https://twitter.com/dormando/status/968579781729009664"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3588-1"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2018/dsa-4218"
},
{
"type": "WEB",
"url": "https://www.exploit-db.com/exploits/44264"
},
{
"type": "WEB",
"url": "https://www.exploit-db.com/exploits/44265"
},
{
"type": "WEB",
"url": "https://www.synology.com/support/security/Synology_SA_18_07"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2018-1000115
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-1000115",
"description": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.",
"id": "GSD-2018-1000115",
"references": [
"https://www.suse.com/security/cve/CVE-2018-1000115.html",
"https://www.debian.org/security/2018/dsa-4218",
"https://access.redhat.com/errata/RHSA-2018:2857",
"https://access.redhat.com/errata/RHSA-2018:2331",
"https://access.redhat.com/errata/RHBA-2018:2140",
"https://access.redhat.com/errata/RHSA-2018:1627",
"https://access.redhat.com/errata/RHSA-2018:1593",
"https://ubuntu.com/security/CVE-2018-1000115",
"https://advisories.mageia.org/CVE-2018-1000115.html",
"https://security.archlinux.org/CVE-2018-1000115",
"https://alas.aws.amazon.com/cve/html/CVE-2018-1000115.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-1000115"
],
"details": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.",
"id": "GSD-2018-1000115",
"modified": "2023-12-13T01:22:27.905007Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"DATE_ASSIGNED": "3/2/2018 21:30:48",
"ID": "CVE-2018-1000115",
"REQUESTER": "kurt@seifried.org",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHBA-2018:2140",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"name": "RHSA-2018:1593",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"name": "USN-3588-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3588-1/"
},
{
"name": "https://github.com/memcached/memcached/wiki/ReleaseNotes156",
"refsource": "MISC",
"url": "https://github.com/memcached/memcached/wiki/ReleaseNotes156"
},
{
"name": "44264",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/44264/"
},
{
"name": "https://twitter.com/dormando/status/968579781729009664",
"refsource": "MISC",
"url": "https://twitter.com/dormando/status/968579781729009664"
},
{
"name": "44265",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/44265/"
},
{
"name": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974",
"refsource": "MISC",
"url": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974"
},
{
"name": "RHSA-2018:2857",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2857"
},
{
"name": "RHSA-2018:1627",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"name": "RHSA-2018:2331",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2331"
},
{
"name": "DSA-4218",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4218"
},
{
"name": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html",
"refsource": "MISC",
"url": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html"
},
{
"name": "https://github.com/memcached/memcached/issues/348",
"refsource": "MISC",
"url": "https://github.com/memcached/memcached/issues/348"
},
{
"name": "https://www.synology.com/support/security/Synology_SA_18_07",
"refsource": "CONFIRM",
"url": "https://www.synology.com/support/security/Synology_SA_18_07"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:memcached:memcached:1.5.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-1000115"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://twitter.com/dormando/status/968579781729009664",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://twitter.com/dormando/status/968579781729009664"
},
{
"name": "https://github.com/memcached/memcached/wiki/ReleaseNotes156",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/wiki/ReleaseNotes156"
},
{
"name": "https://github.com/memcached/memcached/issues/348",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/issues/348"
},
{
"name": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974"
},
{
"name": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html"
},
{
"name": "44264",
"refsource": "EXPLOIT-DB",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/44264/"
},
{
"name": "44265",
"refsource": "EXPLOIT-DB",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/44265/"
},
{
"name": "https://www.synology.com/support/security/Synology_SA_18_07",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://www.synology.com/support/security/Synology_SA_18_07"
},
{
"name": "USN-3588-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3588-1/"
},
{
"name": "RHSA-2018:1627",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"name": "RHSA-2018:1593",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"name": "DSA-4218",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4218"
},
{
"name": "RHSA-2018:2331",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2331"
},
{
"name": "RHBA-2018:2140",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"name": "RHSA-2018:2857",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2857"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2021-08-04T17:15Z",
"publishedDate": "2018-03-05T14:29Z"
}
}
}
OPENSUSE-SU-2024:11045-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
memcached-1.6.9-2.3 on GA media
Severity
Moderate
Notes
Title of the patch: memcached-1.6.9-2.3 on GA media
Description of the patch: These are all security issues fixed in the memcached-1.6.9-2.3 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-11045
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
9.1 (Critical)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.5 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
15 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2017-9951/ | self |
| https://www.suse.com/security/cve/CVE-2018-1000115/ | self |
| https://www.suse.com/security/cve/CVE-2018-1000127/ | self |
| https://www.suse.com/security/cve/CVE-2020-10931/ | self |
| https://www.suse.com/security/cve/CVE-2017-9951 | external |
| https://bugzilla.suse.com/1007870 | external |
| https://bugzilla.suse.com/1056865 | external |
| https://www.suse.com/security/cve/CVE-2018-1000115 | external |
| https://bugzilla.suse.com/1083903 | external |
| https://www.suse.com/security/cve/CVE-2018-1000127 | external |
| https://bugzilla.suse.com/1085209 | external |
| https://www.suse.com/security/cve/CVE-2020-10931 | external |
| https://bugzilla.suse.com/1167522 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "memcached-1.6.9-2.3 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the memcached-1.6.9-2.3 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11045",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11045-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-9951 page",
"url": "https://www.suse.com/security/cve/CVE-2017-9951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000115 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000115/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000127 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10931 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10931/"
}
],
"title": "memcached-1.6.9-2.3 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11045-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "memcached-1.6.9-2.3.aarch64",
"product": {
"name": "memcached-1.6.9-2.3.aarch64",
"product_id": "memcached-1.6.9-2.3.aarch64"
}
},
{
"category": "product_version",
"name": "memcached-devel-1.6.9-2.3.aarch64",
"product": {
"name": "memcached-devel-1.6.9-2.3.aarch64",
"product_id": "memcached-devel-1.6.9-2.3.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "memcached-1.6.9-2.3.ppc64le",
"product": {
"name": "memcached-1.6.9-2.3.ppc64le",
"product_id": "memcached-1.6.9-2.3.ppc64le"
}
},
{
"category": "product_version",
"name": "memcached-devel-1.6.9-2.3.ppc64le",
"product": {
"name": "memcached-devel-1.6.9-2.3.ppc64le",
"product_id": "memcached-devel-1.6.9-2.3.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "memcached-1.6.9-2.3.s390x",
"product": {
"name": "memcached-1.6.9-2.3.s390x",
"product_id": "memcached-1.6.9-2.3.s390x"
}
},
{
"category": "product_version",
"name": "memcached-devel-1.6.9-2.3.s390x",
"product": {
"name": "memcached-devel-1.6.9-2.3.s390x",
"product_id": "memcached-devel-1.6.9-2.3.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "memcached-1.6.9-2.3.x86_64",
"product": {
"name": "memcached-1.6.9-2.3.x86_64",
"product_id": "memcached-1.6.9-2.3.x86_64"
}
},
{
"category": "product_version",
"name": "memcached-devel-1.6.9-2.3.x86_64",
"product": {
"name": "memcached-devel-1.6.9-2.3.x86_64",
"product_id": "memcached-devel-1.6.9-2.3.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "memcached-1.6.9-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64"
},
"product_reference": "memcached-1.6.9-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "memcached-1.6.9-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le"
},
"product_reference": "memcached-1.6.9-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "memcached-1.6.9-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x"
},
"product_reference": "memcached-1.6.9-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "memcached-1.6.9-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64"
},
"product_reference": "memcached-1.6.9-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "memcached-devel-1.6.9-2.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64"
},
"product_reference": "memcached-devel-1.6.9-2.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "memcached-devel-1.6.9-2.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le"
},
"product_reference": "memcached-devel-1.6.9-2.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "memcached-devel-1.6.9-2.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x"
},
"product_reference": "memcached-devel-1.6.9-2.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "memcached-devel-1.6.9-2.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
},
"product_reference": "memcached-devel-1.6.9-2.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-9951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-9951"
}
],
"notes": [
{
"category": "general",
"text": "The try_read_command function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service (segmentation fault) via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-8705.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-9951",
"url": "https://www.suse.com/security/cve/CVE-2017-9951"
},
{
"category": "external",
"summary": "SUSE Bug 1007870 for CVE-2017-9951",
"url": "https://bugzilla.suse.com/1007870"
},
{
"category": "external",
"summary": "SUSE Bug 1056865 for CVE-2017-9951",
"url": "https://bugzilla.suse.com/1056865"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-9951"
},
{
"cve": "CVE-2018-1000115",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000115"
}
],
"notes": [
{
"category": "general",
"text": "Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000115",
"url": "https://www.suse.com/security/cve/CVE-2018-1000115"
},
{
"category": "external",
"summary": "SUSE Bug 1083903 for CVE-2018-1000115",
"url": "https://bugzilla.suse.com/1083903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2018-1000115"
},
{
"cve": "CVE-2018-1000127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000127"
}
],
"notes": [
{
"category": "general",
"text": "memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:item_free() that can result in data corruption and deadlocks due to items existing in hash table being reused from free list. This attack appear to be exploitable via network connectivity to the memcached service. This vulnerability appears to have been fixed in 1.4.37 and later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000127",
"url": "https://www.suse.com/security/cve/CVE-2018-1000127"
},
{
"category": "external",
"summary": "SUSE Bug 1085209 for CVE-2018-1000127",
"url": "https://bugzilla.suse.com/1085209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-1000127"
},
{
"cve": "CVE-2020-10931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10931"
}
],
"notes": [
{
"category": "general",
"text": "Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted binary protocol header to try_read_command_binary in memcached.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10931",
"url": "https://www.suse.com/security/cve/CVE-2020-10931"
},
{
"category": "external",
"summary": "SUSE Bug 1167522 for CVE-2020-10931",
"url": "https://bugzilla.suse.com/1167522"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:memcached-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-1.6.9-2.3.x86_64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.aarch64",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.ppc64le",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.s390x",
"openSUSE Tumbleweed:memcached-devel-1.6.9-2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-10931"
}
]
}
RHBA-2018:2140
Vulnerability from csaf_redhat - Published: 2018-07-05 12:26 - Updated: 2025-11-21 17:21Summary
Red Hat Bug Fix Advisory: Red Hat OpenStack Platform 9 director Bug Fix Advisory
Severity
Moderate
Notes
Topic: Updated packages that resolve various issues are now available for Red Hat
OpenStack Platform 9.0 director for RHEL 7.
Details: Red Hat OpenStack Platform director provides the facilities for deploying
and monitoring a private or public infrastructure-as-a-service (IaaS) cloud
based on Red Hat OpenStack Platform.
Changes to the openstack-tripleo-heat-templates component:
* The operator can override any SNMP configuration with a new parameter, SnmpdConfigOverride. With this parameter, the operator must include all of the SNMP configuration requirements, including usernames and passwords. Red Hat OpenStack director does not place any restrictions on the content of SnmpdConfigOverride. (BZ#1556958)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target.
5.3 (Medium)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
13 references
| URL | Category |
|---|---|
| https://access.redhat.com/errata/RHBA-2018:2140 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1467649 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1512489 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1517268 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1532610 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1533948 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1556958 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1562405 | external |
| https://security.access.redhat.com/data/csaf/v2/a… | self |
| https://access.redhat.com/security/cve/CVE-2018-1000115 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1551182 | external |
| https://www.cve.org/CVERecord?id=CVE-2018-1000115 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2018-1000115 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated packages that resolve various issues are now available for Red Hat\nOpenStack Platform 9.0 director for RHEL 7.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenStack Platform director provides the facilities for deploying\nand monitoring a private or public infrastructure-as-a-service (IaaS) cloud\nbased on Red Hat OpenStack Platform.\n\nChanges to the openstack-tripleo-heat-templates component:\n\n* The operator can override any SNMP configuration with a new parameter, SnmpdConfigOverride. With this parameter, the operator must include all of the SNMP configuration requirements, including usernames and passwords. Red Hat OpenStack director does not place any restrictions on the content of SnmpdConfigOverride. (BZ#1556958)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2018:2140",
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"category": "external",
"summary": "1467649",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1467649"
},
{
"category": "external",
"summary": "1512489",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1512489"
},
{
"category": "external",
"summary": "1517268",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1517268"
},
{
"category": "external",
"summary": "1532610",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1532610"
},
{
"category": "external",
"summary": "1533948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533948"
},
{
"category": "external",
"summary": "1556958",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1556958"
},
{
"category": "external",
"summary": "1562405",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1562405"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhba-2018_2140.json"
}
],
"title": "Red Hat Bug Fix Advisory: Red Hat OpenStack Platform 9 director Bug Fix Advisory",
"tracking": {
"current_release_date": "2025-11-21T17:21:42+00:00",
"generator": {
"date": "2025-11-21T17:21:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHBA-2018:2140",
"initial_release_date": "2018-07-05T12:26:48+00:00",
"revision_history": [
{
"date": "2018-07-05T12:26:48+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-05T12:26:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:21:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "OpenStack 9.0 Director for RHEL 7",
"product": {
"name": "OpenStack 9.0 Director for RHEL 7",
"product_id": "7Server-RH7-RHOS-9.0-Director",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack-director:9::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "instack-undercloud-0:4.0.0-18.el7ost.src",
"product": {
"name": "instack-undercloud-0:4.0.0-18.el7ost.src",
"product_id": "instack-undercloud-0:4.0.0-18.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/instack-undercloud@4.0.0-18.el7ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src",
"product": {
"name": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src",
"product_id": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-tripleo-heat-templates@2.0.0-65.el7ost?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "instack-undercloud-0:4.0.0-18.el7ost.noarch",
"product": {
"name": "instack-undercloud-0:4.0.0-18.el7ost.noarch",
"product_id": "instack-undercloud-0:4.0.0-18.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/instack-undercloud@4.0.0-18.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch",
"product": {
"name": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch",
"product_id": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-tripleo-heat-templates@2.0.0-65.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch",
"product": {
"name": "openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch",
"product_id": "openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-tripleo-heat-templates-liberty@2.0.0-65.el7ost?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "instack-undercloud-0:4.0.0-18.el7ost.noarch as a component of OpenStack 9.0 Director for RHEL 7",
"product_id": "7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.noarch"
},
"product_reference": "instack-undercloud-0:4.0.0-18.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-9.0-Director"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "instack-undercloud-0:4.0.0-18.el7ost.src as a component of OpenStack 9.0 Director for RHEL 7",
"product_id": "7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.src"
},
"product_reference": "instack-undercloud-0:4.0.0-18.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-9.0-Director"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch as a component of OpenStack 9.0 Director for RHEL 7",
"product_id": "7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch"
},
"product_reference": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-9.0-Director"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src as a component of OpenStack 9.0 Director for RHEL 7",
"product_id": "7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src"
},
"product_reference": "openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-9.0-Director"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch as a component of OpenStack 9.0 Director for RHEL 7",
"product_id": "7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch"
},
"product_reference": "openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-9.0-Director"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1000115",
"discovery_date": "2018-03-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1551182"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "memcached: UDP server support allows spoofed traffic amplification DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat is aware of traffic amplification distributed denial of service (DDoS) attacks that take advantage of the insecurely configured memcached servers reachable from the public Internet. The default configuration of memcached as shipped in Red Hat products makes it possible to abuse them for these DDoS attacks if memcached is exposed to connections from the public Internet. Refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in the attack.\n\nhttps://access.redhat.com/solutions/3369081",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.noarch",
"7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.src",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000115"
},
{
"category": "external",
"summary": "RHBZ#1551182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551182"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000115",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000115"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000115",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000115"
}
],
"release_date": "2018-03-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-05T12:26:48+00:00",
"details": "Before applying this update, ensure all previously released errata relevant\nto your system have been applied.\n\nRed Hat OpenStack Platform 9 runs on Red Hat Enterprise Linux 7.4.\n\nThe Red Hat OpenStack Platform 9 Release Notes contain the following:\n* An explanation of the way in which the provided components interact to\nform a working cloud computing environment.\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat OpenStack Platform 9, including which\nchannels need to be enabled and disabled.\n\nThe Release Notes are available at:\nhttps://access.redhat.com/documentation/en/red-hat-openstack-platform/9/paged/release-notes\n\nThis update is available through \u0027yum update\u0027 on systems registered through\nRed Hat Subscription Manager. For more information about Red Hat\nSubscription Manager, see:\n\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html",
"product_ids": [
"7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.noarch",
"7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.src",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2018:2140"
},
{
"category": "workaround",
"details": "Please refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in an attack.\n\nhttps://access.redhat.com/solutions/3369081",
"product_ids": [
"7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.noarch",
"7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.src",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.noarch",
"7Server-RH7-RHOS-9.0-Director:instack-undercloud-0:4.0.0-18.el7ost.src",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.noarch",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-0:2.0.0-65.el7ost.src",
"7Server-RH7-RHOS-9.0-Director:openstack-tripleo-heat-templates-liberty-0:2.0.0-65.el7ost.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "memcached: UDP server support allows spoofed traffic amplification DoS"
}
]
}
RHSA-2018:1593
Vulnerability from csaf_redhat - Published: 2018-05-17 15:40 - Updated: 2026-05-13 01:18Summary
Red Hat Security Advisory: Red Hat OpenStack Platform director security update
Severity
Moderate
Notes
Topic: An update is now available for Red Hat OpenStack Platform 10.0 (Newton).
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenStack Platform director provides the facilities for deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud based on Red Hat OpenStack Platform.
Security Fix(es):
* A resource-permission flaw was found in the python-tripleo and openstack-tripleo-heat-templates packages where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenStack as though the attacker were the OpenStack service, thus potentially reading or modifying data in an OpenStack Block Storage volume.
To exploit this flaw, the attacker must have local access to an overcloud node. However by default, access to overcloud nodes is restricted and accessible only from the management undercloud server on an internal network. (CVE-2017-12155)
This issue was discovered by Katuya Kawakami (NEC).
* It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target. (CVE-2018-1000115)
This advisory also addresses the following issues:
* This release adds support for deploying Dell EMC VMAX Block Storage backend using the Red Hat OpenStack Platform director. (BZ#1503896)
* Using composable roles for deploying Dell SC and PS Block Storage backend caused errors. The backends could only be deploying using 'cinder::config::cinder_config' hiera data.
With this update, the composable role support for deploying the Dell SC and PS Block Storage backends is updated. As a result, they can be now deployed using composable roles. (BZ#1552980)
* Previously, the iptables rules were managed by the Red Hat OpenStack Platform director and the OpenStack Networking service, which resulted in the rules created by the OpenStack Networking service to persist on to the disk. As a result, the rules that should not be loaded after an iptables restart or a system reboot would be loaded causing traffic issues.
With this update, the Red Hat OpenStack Platform director has been updated to exclude the OpenStack Networking rules from '/etc/sysconfig/iptables' when the director saves the firewall rules. As a result, iptables restart or a system reboot should work without causing traffic problems.
Note: It might be necessary to perform a rolling restart of the controller nodes to ensure that any orphaned managed neutron rules are no longer reloaded. (BZ#1541528)
* OS::TripleO::SwiftStorage::Ports* resources have been renamed to OS::TripleO::ObjectStorage::Port* to ensure standalone Object Storage nodes using the 'ObjectStorage' roles can be deployed correctly. Operators need to modify their custom templates that previously used OS::TripleO::SwiftStorage::Ports* settings. (BZ#1544802)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A resource-permission flaw was found in the openstack-tripleo-heat-templates package where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenStack as though the attacker were the OpenStack service, thus potentially reading or modifying data in an OpenStack Block Storage volume. To exploit this flaw, the attacker must have local access to an overcloud node. However by default, access to overcloud nodes is restricted and accessible only from the management undercloud server on an internal network. Follow good security principles in your networking environment to ensure that network access is properly controlled.
8.4 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target.
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
34 references
| URL | Category |
|---|---|
| https://access.redhat.com/errata/RHSA-2018:1593 | self |
| https://access.redhat.com/security/updates/classi… | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1414549 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1489360 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1503896 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1514532 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1514842 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1517302 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1533602 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1534540 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1538753 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1541528 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1543883 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1544211 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1544802 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1545666 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1547091 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1547957 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1551182 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1552980 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1559093 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1568596 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1568601 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1571840 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1576577 | external |
| https://security.access.redhat.com/data/csaf/v2/a… | self |
| https://access.redhat.com/security/cve/CVE-2017-12155 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1489360 | external |
| https://www.cve.org/CVERecord?id=CVE-2017-12155 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2017-12155 | external |
| https://access.redhat.com/security/cve/CVE-2018-1000115 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1551182 | external |
| https://www.cve.org/CVERecord?id=CVE-2018-1000115 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2018-1000115 | external |
Acknowledgments
NEC
Katuya Kawakami
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat OpenStack Platform 10.0 (Newton).\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenStack Platform director provides the facilities for deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud based on Red Hat OpenStack Platform.\n\nSecurity Fix(es):\n\n* A resource-permission flaw was found in the python-tripleo and openstack-tripleo-heat-templates packages where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenStack as though the attacker were the OpenStack service, thus potentially reading or modifying data in an OpenStack Block Storage volume. \n\nTo exploit this flaw, the attacker must have local access to an overcloud node. However by default, access to overcloud nodes is restricted and accessible only from the management undercloud server on an internal network. (CVE-2017-12155)\n\nThis issue was discovered by Katuya Kawakami (NEC).\n\n* It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target. (CVE-2018-1000115)\n\nThis advisory also addresses the following issues:\n\n* This release adds support for deploying Dell EMC VMAX Block Storage backend using the Red Hat OpenStack Platform director. (BZ#1503896)\n\n* Using composable roles for deploying Dell SC and PS Block Storage backend caused errors. The backends could only be deploying using \u0027cinder::config::cinder_config\u0027 hiera data.\nWith this update, the composable role support for deploying the Dell SC and PS Block Storage backends is updated. As a result, they can be now deployed using composable roles. (BZ#1552980)\n\n* Previously, the iptables rules were managed by the Red Hat OpenStack Platform director and the OpenStack Networking service, which resulted in the rules created by the OpenStack Networking service to persist on to the disk. As a result, the rules that should not be loaded after an iptables restart or a system reboot would be loaded causing traffic issues. \nWith this update, the Red Hat OpenStack Platform director has been updated to exclude the OpenStack Networking rules from \u0027/etc/sysconfig/iptables\u0027 when the director saves the firewall rules. As a result, iptables restart or a system reboot should work without causing traffic problems. \nNote: It might be necessary to perform a rolling restart of the controller nodes to ensure that any orphaned managed neutron rules are no longer reloaded. (BZ#1541528)\n\n* OS::TripleO::SwiftStorage::Ports* resources have been renamed to OS::TripleO::ObjectStorage::Port* to ensure standalone Object Storage nodes using the \u0027ObjectStorage\u0027 roles can be deployed correctly. Operators need to modify their custom templates that previously used OS::TripleO::SwiftStorage::Ports* settings. (BZ#1544802)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:1593",
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1414549",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1414549"
},
{
"category": "external",
"summary": "1489360",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489360"
},
{
"category": "external",
"summary": "1503896",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503896"
},
{
"category": "external",
"summary": "1514532",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1514532"
},
{
"category": "external",
"summary": "1514842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1514842"
},
{
"category": "external",
"summary": "1517302",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1517302"
},
{
"category": "external",
"summary": "1533602",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533602"
},
{
"category": "external",
"summary": "1534540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1534540"
},
{
"category": "external",
"summary": "1538753",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1538753"
},
{
"category": "external",
"summary": "1541528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1541528"
},
{
"category": "external",
"summary": "1543883",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1543883"
},
{
"category": "external",
"summary": "1544211",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1544211"
},
{
"category": "external",
"summary": "1544802",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1544802"
},
{
"category": "external",
"summary": "1545666",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1545666"
},
{
"category": "external",
"summary": "1547091",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1547091"
},
{
"category": "external",
"summary": "1547957",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1547957"
},
{
"category": "external",
"summary": "1551182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551182"
},
{
"category": "external",
"summary": "1552980",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1552980"
},
{
"category": "external",
"summary": "1559093",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1559093"
},
{
"category": "external",
"summary": "1568596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568596"
},
{
"category": "external",
"summary": "1568601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568601"
},
{
"category": "external",
"summary": "1571840",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1571840"
},
{
"category": "external",
"summary": "1576577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1576577"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1593.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenStack Platform director security update",
"tracking": {
"current_release_date": "2026-05-13T01:18:10+00:00",
"generator": {
"date": "2026-05-13T01:18:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2018:1593",
"initial_release_date": "2018-05-17T15:40:55+00:00",
"revision_history": [
{
"date": "2018-05-17T15:40:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-05-17T15:40:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-13T01:18:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenStack Platform 10.0",
"product": {
"name": "Red Hat OpenStack Platform 10.0",
"product_id": "7Server-RH7-RHOS-10.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:10::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"product": {
"name": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"product_id": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-tripleo-heat-templates@5.3.10-1.el7ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "puppet-tripleo-0:5.6.8-6.el7ost.src",
"product": {
"name": "puppet-tripleo-0:5.6.8-6.el7ost.src",
"product_id": "puppet-tripleo-0:5.6.8-6.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/puppet-tripleo@5.6.8-6.el7ost?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"product": {
"name": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"product_id": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-tripleo-heat-templates@5.3.10-1.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"product": {
"name": "puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"product_id": "puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/puppet-tripleo@5.6.8-6.el7ost?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch as a component of Red Hat OpenStack Platform 10.0",
"product_id": "7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch"
},
"product_reference": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-10.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src as a component of Red Hat OpenStack Platform 10.0",
"product_id": "7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src"
},
"product_reference": "openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-10.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "puppet-tripleo-0:5.6.8-6.el7ost.noarch as a component of Red Hat OpenStack Platform 10.0",
"product_id": "7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch"
},
"product_reference": "puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-10.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "puppet-tripleo-0:5.6.8-6.el7ost.src as a component of Red Hat OpenStack Platform 10.0",
"product_id": "7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
},
"product_reference": "puppet-tripleo-0:5.6.8-6.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-10.0"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Katuya Kawakami"
],
"organization": "NEC"
}
],
"cve": "CVE-2017-12155",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"discovery_date": "2017-06-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1489360"
}
],
"notes": [
{
"category": "description",
"text": "A resource-permission flaw was found in the openstack-tripleo-heat-templates package where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenStack as though the attacker were the OpenStack service, thus potentially reading or modifying data in an OpenStack Block Storage volume. \r\nTo exploit this flaw, the attacker must have local access to an overcloud node. However by default, access to overcloud nodes is restricted and accessible only from the management undercloud server on an internal network. Follow good security principles in your networking environment to ensure that network access is properly controlled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openstack-tripleo-heat-templates: Ceph client keyring is world-readable when deployed by director",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-12155"
},
{
"category": "external",
"summary": "RHBZ#1489360",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489360"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-12155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-12155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12155"
}
],
"release_date": "2017-09-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-17T15:40:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"category": "workaround",
"details": "To mitigate the flaw, use an overcloud post-deploy script[1] to do the following on all overcloud nodes:\n\nkey=/etc/ceph/ceph.client.openstack.keyring\nchown root:root $key\nchmod 600 $key\nsetfacl -m u:glance:r $key \nsetfacl -m u:cinder:r $key\nsetfacl -m u:nova:r $key\nsetfacl -m u: gnocchi:r $key\n\nIf not using Red Hat OpenStack Platform director, then run the commands above manually on each overcloud node, \nWarning: Only running \u0027chmod 600 $key\u0027 alone (without an ACL) will prevent OpenStack from reading the key.\n\n[1] https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/11/html-single/advanced_overcloud_customization/#sect-Customizing_Overcloud_PostConfiguration_All",
"product_ids": [
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openstack-tripleo-heat-templates: Ceph client keyring is world-readable when deployed by director"
},
{
"cve": "CVE-2018-1000115",
"discovery_date": "2018-03-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1551182"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "memcached: UDP server support allows spoofed traffic amplification DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat is aware of traffic amplification distributed denial of service (DDoS) attacks that take advantage of the insecurely configured memcached servers reachable from the public Internet. The default configuration of memcached as shipped in Red Hat products makes it possible to abuse them for these DDoS attacks if memcached is exposed to connections from the public Internet. Refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in the attack.\n\nhttps://access.redhat.com/solutions/3369081",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000115"
},
{
"category": "external",
"summary": "RHBZ#1551182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551182"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000115",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000115"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000115",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000115"
}
],
"release_date": "2018-03-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-17T15:40:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1593"
},
{
"category": "workaround",
"details": "Please refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in an attack.\n\nhttps://access.redhat.com/solutions/3369081",
"product_ids": [
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.noarch",
"7Server-RH7-RHOS-10.0:openstack-tripleo-heat-templates-0:5.3.10-1.el7ost.src",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.noarch",
"7Server-RH7-RHOS-10.0:puppet-tripleo-0:5.6.8-6.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "memcached: UDP server support allows spoofed traffic amplification DoS"
}
]
}
RHSA-2018:1627
Vulnerability from csaf_redhat - Published: 2018-05-18 17:03 - Updated: 2026-05-13 01:18Summary
Red Hat Security Advisory: Red Hat OpenStack Platform director security update
Severity
Moderate
Notes
Topic: An update is now available for Red Hat OpenStack Platform 11.0 (Ocata).
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenStack Platform director provides the facilities for deploying
and monitoring a private or public infrastructure-as-a-service (IaaS) cloud
based on Red Hat OpenStack Platform.
Security Fix(es):
* A resource-permission flaw was found in the python-tripleo and openstack-tripleo-heat-templates packages where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenStack as though the attacker were the OpenStack service, thus potentially reading or modifying data in an OpenStack Block Storage volume.
To exploit this flaw, the attacker must have local access to an overcloud node. However by default, access to overcloud nodes is restricted and accessible only from the management undercloud server on an internal network. (CVE-2017-12155)
This issue was discovered by Katuya Kawakami (NEC).
* It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target. (CVE-2018-1000115)
This update also includes the following bug fixes and enhancements:
* Prior to this update, when removing the ceph-osd RPM from overcloud nodes that do not require the package, the corresponding Ceph OSD product key was not removed. Consequently, the subscription-manager would incorrectly report that the Ceph OSD product was still installed.
With this update, the script that handles removal of the ceph-osd RPM now also removes the Ceph OSD product key. Note: The script that removes the RPM and product key executes only during the overcloud update procedure; the product key is removed only when the overcloud node is updated.
As a result, after removing the ceph-osd RPM, the subscription-manager no longer reports the Ceph OSD product is installed. (BZ#1571436)
* Previously, there were errors in the director Heat template that configures the VMAX Cinder backend driver. Consequently, the VMAX driver would not function correctly. With this update, the errors have been corrected, and the VMAX driver functions correctly. (BZ#1546799)
* This enhancement adds director support for deploying the Dell EMC VMAX cinder backend. (BZ#1546793)
* In this enhancement, if a minor update is blocked by an existing yum process that prevents the package update, the process should exit with an appropriate error message. This was added because the minor update may appear to freeze, due to yum waiting for the existing yum.pid to exit; when it eventually fails it is not immediately clear why. As a result, if there is an existing yum process preventing the package update, then the minor update fails with a clear message to indicate this: "ERROR existing yum.pid detected - can't continue! Please ensure there is no other package update process for the duration of the minor update worfklow. Exiting". (BZ#1471721)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A resource-permission flaw was found in the openstack-tripleo-heat-templates package where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenStack as though the attacker were the OpenStack service, thus potentially reading or modifying data in an OpenStack Block Storage volume. To exploit this flaw, the attacker must have local access to an overcloud node. However by default, access to overcloud nodes is restricted and accessible only from the management undercloud server on an internal network. Follow good security principles in your networking environment to ensure that network access is properly controlled.
8.4 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target.
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
28 references
| URL | Category |
|---|---|
| https://access.redhat.com/errata/RHSA-2018:1627 | self |
| https://access.redhat.com/security/updates/classi… | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1445766 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1471721 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1478274 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1489360 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1518009 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1524422 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1546799 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1547089 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1547956 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1548345 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1550167 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1551182 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1552245 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1567349 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1567365 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1571436 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1577957 | external |
| https://security.access.redhat.com/data/csaf/v2/a… | self |
| https://access.redhat.com/security/cve/CVE-2017-12155 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1489360 | external |
| https://www.cve.org/CVERecord?id=CVE-2017-12155 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2017-12155 | external |
| https://access.redhat.com/security/cve/CVE-2018-1000115 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1551182 | external |
| https://www.cve.org/CVERecord?id=CVE-2018-1000115 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2018-1000115 | external |
Acknowledgments
NEC
Katuya Kawakami
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat OpenStack Platform 11.0 (Ocata).\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenStack Platform director provides the facilities for deploying\nand monitoring a private or public infrastructure-as-a-service (IaaS) cloud\nbased on Red Hat OpenStack Platform.\n\nSecurity Fix(es):\n\n* A resource-permission flaw was found in the python-tripleo and openstack-tripleo-heat-templates packages where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenStack as though the attacker were the OpenStack service, thus potentially reading or modifying data in an OpenStack Block Storage volume. \n\nTo exploit this flaw, the attacker must have local access to an overcloud node. However by default, access to overcloud nodes is restricted and accessible only from the management undercloud server on an internal network. (CVE-2017-12155)\n\nThis issue was discovered by Katuya Kawakami (NEC).\n\n* It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target. (CVE-2018-1000115)\n\nThis update also includes the following bug fixes and enhancements:\n\n* Prior to this update, when removing the ceph-osd RPM from overcloud nodes that do not require the package, the corresponding Ceph OSD product key was not removed. Consequently, the subscription-manager would incorrectly report that the Ceph OSD product was still installed.\nWith this update, the script that handles removal of the ceph-osd RPM now also removes the Ceph OSD product key. Note: The script that removes the RPM and product key executes only during the overcloud update procedure; the product key is removed only when the overcloud node is updated.\nAs a result, after removing the ceph-osd RPM, the subscription-manager no longer reports the Ceph OSD product is installed. (BZ#1571436)\n\n* Previously, there were errors in the director Heat template that configures the VMAX Cinder backend driver. Consequently, the VMAX driver would not function correctly. With this update, the errors have been corrected, and the VMAX driver functions correctly. (BZ#1546799)\n\n* This enhancement adds director support for deploying the Dell EMC VMAX cinder backend. (BZ#1546793)\n\n* In this enhancement, if a minor update is blocked by an existing yum process that prevents the package update, the process should exit with an appropriate error message. This was added because the minor update may appear to freeze, due to yum waiting for the existing yum.pid to exit; when it eventually fails it is not immediately clear why. As a result, if there is an existing yum process preventing the package update, then the minor update fails with a clear message to indicate this: \"ERROR existing yum.pid detected - can\u0027t continue! Please ensure there is no other package update process for the duration of the minor update worfklow. Exiting\". (BZ#1471721)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:1627",
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1445766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1445766"
},
{
"category": "external",
"summary": "1471721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471721"
},
{
"category": "external",
"summary": "1478274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1478274"
},
{
"category": "external",
"summary": "1489360",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489360"
},
{
"category": "external",
"summary": "1518009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1518009"
},
{
"category": "external",
"summary": "1524422",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1524422"
},
{
"category": "external",
"summary": "1546799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1546799"
},
{
"category": "external",
"summary": "1547089",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1547089"
},
{
"category": "external",
"summary": "1547956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1547956"
},
{
"category": "external",
"summary": "1548345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1548345"
},
{
"category": "external",
"summary": "1550167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1550167"
},
{
"category": "external",
"summary": "1551182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551182"
},
{
"category": "external",
"summary": "1552245",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1552245"
},
{
"category": "external",
"summary": "1567349",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1567349"
},
{
"category": "external",
"summary": "1567365",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1567365"
},
{
"category": "external",
"summary": "1571436",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1571436"
},
{
"category": "external",
"summary": "1577957",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577957"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1627.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenStack Platform director security update",
"tracking": {
"current_release_date": "2026-05-13T01:18:10+00:00",
"generator": {
"date": "2026-05-13T01:18:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2018:1627",
"initial_release_date": "2018-05-18T17:03:23+00:00",
"revision_history": [
{
"date": "2018-05-18T17:03:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-05-18T17:03:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-13T01:18:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenStack Platform 11.0",
"product": {
"name": "Red Hat OpenStack Platform 11.0",
"product_id": "7Server-RH7-RHOS-11.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:11::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"product": {
"name": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"product_id": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-tripleo-heat-templates@6.2.12-2.el7ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "puppet-tripleo-0:6.5.10-3.el7ost.src",
"product": {
"name": "puppet-tripleo-0:6.5.10-3.el7ost.src",
"product_id": "puppet-tripleo-0:6.5.10-3.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/puppet-tripleo@6.5.10-3.el7ost?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"product": {
"name": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"product_id": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-tripleo-heat-templates@6.2.12-2.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"product": {
"name": "puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"product_id": "puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/puppet-tripleo@6.5.10-3.el7ost?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch as a component of Red Hat OpenStack Platform 11.0",
"product_id": "7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch"
},
"product_reference": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-11.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src as a component of Red Hat OpenStack Platform 11.0",
"product_id": "7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src"
},
"product_reference": "openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-11.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "puppet-tripleo-0:6.5.10-3.el7ost.noarch as a component of Red Hat OpenStack Platform 11.0",
"product_id": "7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch"
},
"product_reference": "puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-11.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "puppet-tripleo-0:6.5.10-3.el7ost.src as a component of Red Hat OpenStack Platform 11.0",
"product_id": "7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
},
"product_reference": "puppet-tripleo-0:6.5.10-3.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-11.0"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Katuya Kawakami"
],
"organization": "NEC"
}
],
"cve": "CVE-2017-12155",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"discovery_date": "2017-06-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1489360"
}
],
"notes": [
{
"category": "description",
"text": "A resource-permission flaw was found in the openstack-tripleo-heat-templates package where ceph.client.openstack.keyring is created as world-readable. A local attacker with access to the key could read or modify data on Ceph cluster pools for OpenStack as though the attacker were the OpenStack service, thus potentially reading or modifying data in an OpenStack Block Storage volume. \r\nTo exploit this flaw, the attacker must have local access to an overcloud node. However by default, access to overcloud nodes is restricted and accessible only from the management undercloud server on an internal network. Follow good security principles in your networking environment to ensure that network access is properly controlled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openstack-tripleo-heat-templates: Ceph client keyring is world-readable when deployed by director",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-12155"
},
{
"category": "external",
"summary": "RHBZ#1489360",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489360"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-12155",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-12155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12155"
}
],
"release_date": "2017-09-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-18T17:03:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"category": "workaround",
"details": "To mitigate the flaw, use an overcloud post-deploy script[1] to do the following on all overcloud nodes:\n\nkey=/etc/ceph/ceph.client.openstack.keyring\nchown root:root $key\nchmod 600 $key\nsetfacl -m u:glance:r $key \nsetfacl -m u:cinder:r $key\nsetfacl -m u:nova:r $key\nsetfacl -m u: gnocchi:r $key\n\nIf not using Red Hat OpenStack Platform director, then run the commands above manually on each overcloud node, \nWarning: Only running \u0027chmod 600 $key\u0027 alone (without an ACL) will prevent OpenStack from reading the key.\n\n[1] https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/11/html-single/advanced_overcloud_customization/#sect-Customizing_Overcloud_PostConfiguration_All",
"product_ids": [
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openstack-tripleo-heat-templates: Ceph client keyring is world-readable when deployed by director"
},
{
"cve": "CVE-2018-1000115",
"discovery_date": "2018-03-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1551182"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "memcached: UDP server support allows spoofed traffic amplification DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat is aware of traffic amplification distributed denial of service (DDoS) attacks that take advantage of the insecurely configured memcached servers reachable from the public Internet. The default configuration of memcached as shipped in Red Hat products makes it possible to abuse them for these DDoS attacks if memcached is exposed to connections from the public Internet. Refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in the attack.\n\nhttps://access.redhat.com/solutions/3369081",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000115"
},
{
"category": "external",
"summary": "RHBZ#1551182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551182"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000115",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000115"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000115",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000115"
}
],
"release_date": "2018-03-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-05-18T17:03:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1627"
},
{
"category": "workaround",
"details": "Please refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in an attack.\n\nhttps://access.redhat.com/solutions/3369081",
"product_ids": [
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.noarch",
"7Server-RH7-RHOS-11.0:openstack-tripleo-heat-templates-0:6.2.12-2.el7ost.src",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.noarch",
"7Server-RH7-RHOS-11.0:puppet-tripleo-0:6.5.10-3.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "memcached: UDP server support allows spoofed traffic amplification DoS"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…