Amazon Linux 1 Security Advisory: ALAS-2023-1669
Advisory Release Date: 2023-01-19 20:10 Pacific
Advisory Updated Date: 2023-01-24 17:21 Pacific
PHP-Memcached v2.2.0 and below contains an improper NULL termination which allows attackers to execute CLRF injection. (CVE-2022-26635)
Affected Packages:
php-pecl-memcached
Issue Correction:
Run yum update php-pecl-memcached to update your system.
i686:
php-pecl-memcached-2.1.0-3.6.amzn1.i686
php-pecl-memcached-debuginfo-2.1.0-3.6.amzn1.i686
src:
php-pecl-memcached-2.1.0-3.6.amzn1.src
x86_64:
php-pecl-memcached-2.1.0-3.6.amzn1.x86_64
php-pecl-memcached-debuginfo-2.1.0-3.6.amzn1.x86_64