[ALSA-2026:19372] Critical: nginx:1.26 security update
Type:
security
Severity:
critical
Release date:
2026-05-26
Description:
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fix(es): * nginx: NGINX: Arbitrary Code Execution Vulnerability (CVE-2026-42945) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch nginx-all-modules-1.26.3-9.module_el9.8.0+247+aa936373.noarch.rpm 79370c3b0f6d72f1c1c18536070f462a31f2caaa3e44a0f7655bbc1f2aae8bce
noarch nginx-filesystem-1.26.3-9.module_el9.8.0+247+aa936373.noarch.rpm a588c17f4b6c26252592c622da00137b3b8c446004b63892f235b283b8a7484e
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.