NVD Vulnerability Detail

CVE-2018-1000127

Summary	memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:item_free() that can result in data corruption and deadlocks due to items existing in hash table being reused from free list. This attack appear to be exploitable via network connectivity to the memcached service. This vulnerability appears to have been fixed in 1.4.37 and later.
Publication Date	March 14, 2018, 6:29 a.m.
Registration Date	March 1, 2021, 6:39 p.m.
Last Update	Nov. 21, 2024, 12:39 p.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:memcached:memcached::::::::					1.4.37

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*

Configuration4		or higher	or less	more than	less than
cpe:2.3:a:redhat:openstack:10:::::::*

Related information, measures and tools

No	URL	タグ
1	https://access.redhat.com/errata/RHSA-2018:2290	Third Party Advisory
2	https://access.redhat.com/errata/RHSA-2018:2290	Third Party Advisory
3	https://github.com/memcached/memcached/commit/a8c4a82787b8b6c256d61bd5c42fb7f92d1bae00	Patch Third Party Advisory
4	https://github.com/memcached/memcached/commit/a8c4a82787b8b6c256d61bd5c42fb7f92d1bae00	Patch Third Party Advisory
5	https://github.com/memcached/memcached/issues/271	Third Party Advisory
6	https://github.com/memcached/memcached/issues/271	Third Party Advisory
7	https://github.com/memcached/memcached/wiki/ReleaseNotes1437	Release Notes Third Party Advisory
8	https://github.com/memcached/memcached/wiki/ReleaseNotes1437	Release Notes Third Party Advisory
9	https://lists.debian.org/debian-lts-announce/2018/03/msg00031.html	Mailing List Third Party Advisory
10	https://lists.debian.org/debian-lts-announce/2018/03/msg00031.html	Mailing List Third Party Advisory
11	https://usn.ubuntu.com/3601-1/	Third Party Advisory
12	https://usn.ubuntu.com/3601-1/	Third Party Advisory
13	https://www.debian.org/security/2018/dsa-4218	Third Party Advisory
14	https://www.debian.org/security/2018/dsa-4218	Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-190	整数オーバーフローまたはラップアラウンド	https://cwe.mitre.org/data/definitions/190.html
2	CWE-667	不適切なロック	https://cwe.mitre.org/data/definitions/667.html

JVN Vulnerability Information

Memcached における整数オーバーフローの脆弱性

Title	Memcached における整数オーバーフローの脆弱性
Summary	Memcached には、整数オーバーフローの脆弱性が存在します。
Possible impacts	サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	March 19, 2018, midnight
Registration Date	May 11, 2018, 3:31 p.m.
Last Update	May 11, 2018, 3:31 p.m.

Affected System

Debian

Debian GNU/Linux

Canonical

Ubuntu

Memcached

Memcached 1.4.37 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2018-1000127	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000127
National Vulnerability Database (NVD)
2	CVE-2018-1000127	https://nvd.nist.gov/vuln/detail/CVE-2018-1000127

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-190	https://cwe.mitre.org/data/definitions/190.html

ベンダー情報

No	Name	URL
Debian Bug report logs
1	[SECURITY] [DLA 1329-1] memcached security update	https://lists.debian.org/debian-lts-announce/2018/03/msg00031.html
GitHub
2	Don't overflow item refcount on get	https://github.com/memcached/memcached/commit/a8c4a82787b8b6c256d61bd5c42fb7f92d1bae00
3	Memcached gets a dead loop in func assoc_find #271	https://github.com/memcached/memcached/issues/271
4	ReleaseNotes1437	https://github.com/memcached/memcached/wiki/ReleaseNotes1437
Ubuntu Security Notice
5	USN-3601	https://usn.ubuntu.com/3601-1/

Change Log

No	Changed Details	Date of change
1	[2018年05月11日] 掲載	May 11, 2018, 3:31 p.m.