CVE-2022-26635

NameCVE-2022-26635
DescriptionPHP-Memcached v2.2.0 and below contains an improper NULL termination which allows attackers to execute CLRF injection.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Notes

Disputed issue, not considered a security issue by upstream:
https://github.com/php-memcached-dev/php-memcached/issues/519#issuecomment-1259303434
https://xhzeem.me/posts/Php5-memcached-Injection-Bypass/read/
https://github.com/php-memcached-dev/php-memcached/issues/519
Search for package or bug name: Reporting problems