[ubuntu/artful-security] memcached 1.4.33-1ubuntu3.2 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Mon Mar 5 15:04:50 UTC 2018


memcached (1.4.33-1ubuntu3.2) artful-security; urgency=medium

  * SECURITY UPDATE: denial of service due to integer overflow
    - debian/patches/CVE-2017-9951.patch: check for integer overflow on
      key requests
    - CVE-2017-9951
  * SECURITY UPDATE: disable listening on UDP port by default due to
    use in DDoS amplification attacks
    - debian/patches/disable-udp-by-default.patch: disable UDP port by
      default. (LP: #1752831)
    - debian/NEWS: add explanation and document how to re-enable UDP if
      necessary.
    - CVE-2018-1000115
  * debian/patches/fix-compiler-warning.patch: fix compilation warning
    with gcc-7 that causes FTBFS.
  * debian/rules: disable tests on armhf, to prevent the build hanging.

Date: 2018-03-05 09:48:39.358687+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/memcached/1.4.33-1ubuntu3.2
-------------- next part --------------
Sorry, changesfile not available.


More information about the Artful-changes mailing list