{"id":"CVE-2016-8705","details":"Multiple integer overflows in process_bin_update function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.","modified":"2026-03-20T11:15:36.033301Z","published":"2017-01-06T21:59:01.820Z","related":["MGASA-2016-0381","SUSE-SU-2018:0778-1","SUSE-SU-2018:0807-1","SUSE-SU-2018:1601-1","openSUSE-SU-2024:10021-1"],"references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/94083"},{"type":"WEB","url":"http://www.securitytracker.com/id/1037333"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201701-12"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2819.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2820.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3704"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:0059"},{"type":"EVIDENCE","url":"http://www.talosintelligence.com/reports/TALOS-2016-0220/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/memcached/memcached","events":[{"introduced":"0"},{"last_affected":"c00dbc3927af71afb8c46c7416bd53a92fecfdb2"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.4.31"}]}}],"versions":["1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.2","1.3.3","1.4-rc1","1.4.0","1.4.0-rc1","1.4.1","1.4.1-rc1","1.4.10","1.4.11","1.4.11-beta1","1.4.11-rc1","1.4.12","1.4.13","1.4.14","1.4.15","1.4.16","1.4.17","1.4.18","1.4.19","1.4.2","1.4.2-rc1","1.4.20","1.4.21","1.4.22","1.4.23","1.4.24","1.4.25","1.4.26","1.4.27","1.4.28","1.4.29","1.4.3","1.4.3-rc1","1.4.3-rc2","1.4.30","1.4.31","1.4.4","1.4.5","1.4.6","1.4.6-rc1","1.4.7","1.4.7-rc1","1.4.8","1.4.8-rc1","1.4.9"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-8705.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}