ALSA-2026:4705

[ALSA-2026:4705] Moderate: nginx security update

Type:

security

Severity:

moderate

Release date:

2026-03-19

Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.   

Security Fix(es):  

  * nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
noarch	nginx-filesystem-1.26.3-2.el10_1.noarch.rpm	182be8a2a29df2b2608d76b7c0bfbcfb882999b0f68cb8884612791133544951
noarch	nginx-all-modules-1.26.3-2.el10_1.noarch.rpm	49f7dffa73b9abb75475acc54058655b6f06d8adeb9993709d0be62220832428

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.