ALSA-2026:18041

[ALSA-2026:18041] Critical: nginx:1.24 security update

Type:

security

Severity:

critical

Release date:

2026-05-19

Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.   

Security Fix(es):  

  * nginx: NGINX: Arbitrary Code Execution Vulnerability (CVE-2026-42945)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	nginx-mod-stream-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.aarch64.rpm	0a857356fcdcc5af29b4df13bb4f7369a84b08b1802f74495dff2a354a8f6c37
aarch64	nginx-mod-http-xslt-filter-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.aarch64.rpm	4a8a28d9b25a262df52a0d57c026a6a2189f0030efd181ba5e16725640a9a7e9
aarch64	nginx-mod-http-perl-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.aarch64.rpm	72789502113d190fa519df26c8c5205910926f72502346e1ee5be32c9b74c578
aarch64	nginx-mod-mail-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.aarch64.rpm	a40411563ef1003f6309560725fe906feb504b1e0007dd9abedaedf4c374e767
aarch64	nginx-mod-http-image-filter-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.aarch64.rpm	b80a49b41157347280785c9bad4694af1f0dfc09cdf399ce812bcd88d483214f
aarch64	nginx-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.aarch64.rpm	bd7489195a54b394df35781ffaabae13e65440366ac7ca27fcd1c3005e41e6e5
aarch64	nginx-mod-devel-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.aarch64.rpm	f9f85565e3a8dd772faa27103c758ef3bdf763808fdb2ad9bb792c4d4ddd8588
noarch	nginx-filesystem-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.noarch.rpm	645940aa745e17b7bd3e81088c8191b7b6ddb231d0730f88a689f76057fd7ddd
noarch	nginx-all-modules-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.noarch.rpm	efcd17aef1f04c56c13d62c8805d09c907c698e19e9414f2e3bb5b8f3a547457
ppc64le	nginx-mod-http-xslt-filter-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.ppc64le.rpm	26a302e463702221027effa1b611863afd81841bfbc348ed8f1e82428c720f81
ppc64le	nginx-mod-mail-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.ppc64le.rpm	3162476f3e84c1ec7a24ba6ce20fedb307853604e82c87201eb29fe918ac41bf
ppc64le	nginx-mod-devel-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.ppc64le.rpm	4e00c134640d2f8789150a69ef5d6973d1731eafe12fe9f692abe72a183bc700
ppc64le	nginx-mod-http-perl-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.ppc64le.rpm	6647000e112eac2d197dc5fe00157869d3cfb02d88207249239c9a8ca7c016d0
ppc64le	nginx-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.ppc64le.rpm	cc8030e88cbc1e581e7ec6f0535457ffeb33bc3adb4feab81d3b588b031006d2
ppc64le	nginx-mod-http-image-filter-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.ppc64le.rpm	d2d0574954bfda5d3f6e7eb67aa3484de0cbed63945381134c81a13e716b46cf
ppc64le	nginx-mod-stream-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.ppc64le.rpm	df545e0445299196c379e3b7b38f48f2173a287829d1afaab115535bd028bd64
s390x	nginx-mod-http-image-filter-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.s390x.rpm	24f6984c0ae83c95535caa3880364c5c9cf2f2edf967ad12f6c9e40f9b1432f2
s390x	nginx-mod-devel-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.s390x.rpm	469027a874ccf48b8bda37e6c7690f85928a3dd8057e9e6b483d786b449b35fe
s390x	nginx-mod-http-xslt-filter-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.s390x.rpm	49471f25f79f7f1c00ce31fd2eeb9439b0051a0cc1d82250e1a58a3dbdf0ebef
s390x	nginx-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.s390x.rpm	a30e2580660c63ba8e883896f043eada488e949b857906afc846256e65b2f7bb
s390x	nginx-mod-http-perl-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.s390x.rpm	b145707c2903ffa8e824125938dbecc90bcadb0637077c17f45fb15b5e890b13
s390x	nginx-mod-mail-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.s390x.rpm	bc190592c8d842ea2d0539ce3b963f7067fff34dc28ca50befe5fa7c3c3f7f2a
s390x	nginx-mod-stream-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.s390x.rpm	d8eff99e1667ef577f25416876f8b8380c2a5cc8ae9380f53ec752647bd30637
x86_64	nginx-mod-stream-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.x86_64.rpm	464ad2bfabeab52d96ef77df0605cd9a17e11b8765861c57e608d71cd80cc44e
x86_64	nginx-mod-devel-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.x86_64.rpm	5fbef0bb51262d30a6b8eff0b4a6fffacaaa825d7f26abe333b07eda9ea110a1
x86_64	nginx-mod-http-image-filter-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.x86_64.rpm	810ca6f4d1738d20402d5a25641ddaef3b4cf757f58515bf2ca6112f74d8308b
x86_64	nginx-mod-http-xslt-filter-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.x86_64.rpm	9085ea843cae8db049e6b2e3f91e969881f9238a9ee1a11104f8199fd9ee457e
x86_64	nginx-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.x86_64.rpm	99c0107813d794644b791eef63d8aaaa4e1ef21efadff5169d6bb61aa1de1e13
x86_64	nginx-mod-http-perl-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.x86_64.rpm	9f3d3f526c25f976a0fb4fb94e03fdef473f162589603d3c75acb4ef2fb91723
x86_64	nginx-mod-mail-1.24.0-3.module_el8.10.0+4182+ca797750.1.alma.1.x86_64.rpm	dd404384a4d299255968a8b9a94bab807a308e8bfa69cde09e63ca6d89eeb4d1

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.