ALSA-2026:19371

[ALSA-2026:19371] Critical: nginx:1.24 security update

Type:

security

Severity:

critical

Release date:

2026-05-26

Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.   

Security Fix(es):  

  * nginx: NGINX: Arbitrary Code Execution Vulnerability (CVE-2026-42945)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
noarch	nginx-filesystem-1.24.0-7.module_el9.8.0+246+ef96a02d.1.alma.1.noarch.rpm	4b75dc5e5a21e8910ba86a24f6e6258401f3621309f270bd5108dd80b6bf19d0
noarch	nginx-all-modules-1.24.0-7.module_el9.8.0+246+ef96a02d.1.alma.1.noarch.rpm	aa4adf00fe9a29ad20661636181a70b59636f81647b8a23f56f13995636f0f96

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.