Topic: [RH6] important memcached security update (CVE-2016-8704, CVE-2016-870
Hello,
There was an important memcached security update made on 23.11.2016:
Security Fix(es):
* Two integer overflow flaws, leading to heap-based buffer overflows, were found
in the memcached binary protocol. An attacker could create a specially crafted
message that would cause the memcached server to crash or, potentially, execute
arbitrary code. (CVE-2016-8704, CVE-2016-8705)
You can find complete details at the following address: https://rhn.redhat.com/errata/RHSA-2016-2820.html.
When do you think you will have an update for the memcache package?
Thank you for your work!
Raluca