[CLSA-2026:1783629498] memcached: Fix of CVE-2026-47783
Type:
security
Severity:
Important
Release date:
2026-07-09 20:38:35 UTC
Description:
- CVE-2026-47783: timing side-channel in SASL userdb auth; use constant-time safe_memcmp() for username/password and drop the early break so the whole password file is always scanned.
CVEs fixed:
Updated packages:
  • memcached-1.6.9-7.el9.tuxcare.els2.x86_64.rpm
    sha:714b76e67bf83d94b019835e28abe20cc6fa010dfcc27ea7f53463a628812a92
  • memcached-devel-1.6.9-7.el9.tuxcare.els2.x86_64.rpm
    sha:7c011aa26df98ea406cad9f247e3338bd6ebc3bdd61cb57305f8a44687d7dab4
  • memcached-selinux-1.6.9-7.el9.tuxcare.els2.x86_64.rpm
    sha:8f6cc8638ead95558a170964ad8f3711d567fbf76384bc2b8d31f3c5311e728a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.