[CLSA-2026:1783635895] memcached: Fix of CVE-2026-47783
Type:
security
Severity:
Important
Release date:
2026-07-09 22:25:10 UTC
Description:
- CVE-2026-47783: timing side-channel in SASL userdb auth; use constant-time safe_memcmp() for username/password and drop the early break so the whole password file is always scanned.
CVEs fixed:
Updated packages:
  • memcached-1.6.9-7.el9.tuxcare.els2.x86_64.rpm
    sha:5a8393452f0a593494571bd9ee389def476f8967a841a50406e2b143ad7b6993
  • memcached-devel-1.6.9-7.el9.tuxcare.els2.x86_64.rpm
    sha:dbe5a7a7018725bbc532d1cd0165ee88e0c7317fad0e1a1030a6b98f5d331234
  • memcached-selinux-1.6.9-7.el9.tuxcare.els2.x86_64.rpm
    sha:ee86b51bb271945385ee79da20a0ed6477e1e11eb93c0287ce02907de6176870
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.