Amazon Linux Amazon Linux Security Advisory for memcached: ALAS2-2018-964

漏洞类别:Amazon Linux

漏洞等级:

漏洞信息

It was discovered that the memcached daemon listened on UDP port 11211 by default. An attacker could use memcached for UDP amplification denial-of-service attacks. The UDP port has been disabled by default, but can still be enabled.

漏洞危害

Allows unauthorized disclosure of information; allows unauthorized modification; allows disruption of service.

解决方案

Please refer to Amazon advisory ALAS-2018-964 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

ALAS-2018-964: Amazon Linux 2

Leave a Reply