Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Disclosure of unrelated data in libmemcached-awesome
Vulnerability Description
libmemcached-awesome is an open source C/C++ client library and tools for the memcached server. `libmemcached` could return data for a previously requested key, if that previous request timed out due to a low `POLL_TIMEOUT`. This issue has been addressed in version 1.1.4. Users are advised to upgrade. There are several ways to workaround or lower the probability of this bug affecting a given deployment. 1: use a reasonably high `POLL_TIMEOUT` setting, like the default. 2: use separate libmemcached connections for unrelated data. 3: do not re-use libmemcached connections in an unknown state.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
信息暴露
Vulnerability Title
libmemcached-awesome 信息泄露漏洞
Vulnerability Description
libmemcached-awesome是Awesome个人开发者的一个用于 memcached 服务器的开源 C/C++ 客户端库和工具。 libmemcached-awesome 1.1.4之前版本存在信息泄露漏洞,该漏洞源于请求超时可以返回之前请求的密钥数据。
CVSS Information
N/A
Vulnerability Type
N/A