[Git][security-tracker-team/security-tracker][master] Reserve DLA-4601-1 for memcached

Chris Lamb (@lamby) lamby at debian.org
Tue May 26 19:56:49 BST 2026 


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
96931c94 by Chris Lamb at 2026-05-26T11:56:28-07:00
Reserve DLA-4601-1 for memcached

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[26 May 2026] DLA-4601-1 memcached - security update
+	{CVE-2026-47783 CVE-2026-47784}
+	[bullseye] - memcached 1.6.9+dfsg-1+deb11u1
 [25 May 2026] DLA-4600-1 postorius - security update
 	{CVE-2026-44742}
 	[bullseye] - postorius 1.3.4-2+deb11u2


=====================================
data/dla-needed.txt
=====================================
@@ -369,14 +369,6 @@ mbedtls
 mediawiki (guilhem)
   NOTE: 20260404: Added by Front-Desk (ta)
 --
-memcached (Chris Lamb)
-  NOTE: 20260520: Added by Front-Desk (Beuc)
-  NOTE: 20260520: Cf. https://www.openwall.com/lists/oss-security/2026/05/19/32
-  NOTE: 20260520: Currently only 2 CVEs (CVE-2026-47783/84) are registered for minor
-  NOTE: 20260520: side-channel issues, but the maintainer warned about many others
-  NOTE: 20260520: including memory corruption AND about his lack of time on registering
-  NOTE: 20260520: CVEs, so help and investigation is needed here. (Beuc/front-desk)
---
 mesa (tobi)
   NOTE: 20260418: Added by Front-Desk. Fix CVE-2026-40393 (rouca)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96931c9426fcbd4bd4d60282dc50169aed5c48d0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96931c9426fcbd4bd4d60282dc50169aed5c48d0
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260526/49972546/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list