openSUSE Security Update : memcached (openSUSE-2018-373)
Medium Nessus Plugin ID 109100
Synopsis
The remote openSUSE host is missing a security update.
Description
This update for memcached fixes the following issues :
- CVE-2018-1000115: Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server could result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). (bsc#1083903)
- Home directory shouldn't be world readable bsc#1077718
This update was imported from the SUSE:SLE-12:Update update project.
Solution
Update the affected memcached packages.