[ALSA-2026:18063] Critical: nginx security update
Type:
security
Severity:
critical
Release date:
2026-05-19
Description:
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fix(es): * nginx: NGINX: Arbitrary Code Execution Vulnerability (CVE-2026-42945) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch nginx-filesystem-1.26.3-2.el10_1.2.noarch.rpm 17c0ee529e26540f99c7d4886207be72c68418e4250f0a71f3a6aeb34a8e324a
noarch nginx-all-modules-1.26.3-2.el10_1.2.noarch.rpm 487c71ee60f7a459f646497450e575d4e562d7df568ee0519d01b69f5c58606f
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.