Bug 14147

Summary: [CVE 21] memcached CVEs
Product: [ROSA-based products] ROSA Fresh Reporter: Vladimir Potapov <v.potapov>
Component: Packages from MainAssignee: ROSA Linux Bugs <bugs>
Status: VERIFIED FIXED QA Contact: ROSA Linux Bugs <bugs>
Severity: blocker    
Priority: Highest CC: a.proklov, pastordidi
Version: AllFlags: v.potapov: qa_verified+
v.potapov: secteam_verified?
a.proklov: published+
Target Milestone: ---   
Hardware: All   
OS: Linux   
URL: CVE-2023-46852
Whiteboard:
Platform: --- ROSA Vulnerability identifier:
RPM Package: ISO-related:
Bad POT generating: Upstream:

Description Vladimir Potapov 2023-12-11 10:46:43 MSK 
https://nvd.nist.gov/vuln/detail/CVE-2023-46852 HIGH!
Comment 1 Vladimir Potapov 2023-12-11 10:47:57 MSK 
https://nvd.nist.gov/vuln/detail/CVE-2023-46853 Critical!
Comment 2 Aleksandr Proklov 2023-12-12 04:20:05 MSK 
уязвимости закрыты обновлением версии

memcached	1.6.22-1

https://abf.io/build_lists/4885465
https://abf.io/build_lists/4885466 x64
https://abf.io/build_lists/4885467
https://abf.io/build_lists/4885468
https://abf.io/build_lists/4885469
Comment 3 Dmitry Postnikov 2023-12-12 11:20:10 MSK 
*****************************
Обновление отослано в Тестинг
Comment 4 Vladimir Potapov 2023-12-14 17:06:10 MSK 
memcached-1.6.22-1
https://abf.io/build_lists/4885465
https://abf.io/build_lists/4885466 x64
https://abf.io/build_lists/4885467
https://abf.io/build_lists/4885468
https://abf.io/build_lists/4885469
******************************* Advisory ***********************
CVEs closed by version update
****************************************************************
QA Verified