ALSA-2026:19374

[ALSA-2026:19374] Critical: nginx security update

Type:

security

Severity:

critical

Release date:

2026-05-26

Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.   

Security Fix(es):  

  * nginx: NGINX: Arbitrary Code Execution Vulnerability (CVE-2026-42945)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	nginx-mod-mail-1.20.1-28.el9_8.2.alma.1.aarch64.rpm	0b14312b738375cff596ec1f58f37ae9dbf0056b71c2b25488b8865b394e6c58
aarch64	nginx-mod-devel-1.20.1-28.el9_8.2.alma.1.aarch64.rpm	35147e5b75c1ff8594439b07357a282fa317ebdaab32239e9676f88511042fa2
aarch64	nginx-core-1.20.1-28.el9_8.2.alma.1.aarch64.rpm	5842c9c9ee5f0ee9e145019a20aeee2149c163d84ec492941ebe6f5ba3e3e165
aarch64	nginx-mod-http-perl-1.20.1-28.el9_8.2.alma.1.aarch64.rpm	720a3cf93099391864aa6a16118c2f8ad1f80779159a6bddebbf6648a84c3a9e
aarch64	nginx-1.20.1-28.el9_8.2.alma.1.aarch64.rpm	865d8dedcd1d6e1a6afc2717be0d5d8a177f00fae0e32fb330b4691577f10fb4
aarch64	nginx-mod-http-image-filter-1.20.1-28.el9_8.2.alma.1.aarch64.rpm	e3bad7b515ffb2557847e49562c9b27690ee42315e491484ba09140aee7ef52c
aarch64	nginx-mod-http-xslt-filter-1.20.1-28.el9_8.2.alma.1.aarch64.rpm	f7d3dcb940f1c82ed11da1bbb39bbccec62e302a1de8357671add534307bdb8b
aarch64	nginx-mod-stream-1.20.1-28.el9_8.2.alma.1.aarch64.rpm	fb96d06d0a0b19730f1b36d77baa5a74738a0be12d3cae44ba9cf01781d6bd11
noarch	nginx-filesystem-1.20.1-28.el9_8.2.alma.1.noarch.rpm	12f18b98da9a7faa44afda3b2668f321871594ee329ee860f6775cd29b059e3b
noarch	nginx-all-modules-1.20.1-28.el9_8.2.alma.1.noarch.rpm	ce5401d4547cbc480a1fcbb0a701d21434b2bf97b7b33cc45dfba0c5a7ee32f8
ppc64le	nginx-mod-http-perl-1.20.1-28.el9_8.2.alma.1.ppc64le.rpm	0fe494beab49f52691b73f9680faa58d3d5a91a3869b6e1c1be7e4c802a54b85
ppc64le	nginx-1.20.1-28.el9_8.2.alma.1.ppc64le.rpm	135197fd4dccca992d323f7c5e8a96d37de0fe96b602cbe6ecc4236443fca084
ppc64le	nginx-mod-stream-1.20.1-28.el9_8.2.alma.1.ppc64le.rpm	288a7b914dd48d7dbfe03da6b85034d3047d4d4389f34fe254c3a8b4f7c77949
ppc64le	nginx-mod-mail-1.20.1-28.el9_8.2.alma.1.ppc64le.rpm	2cabd6b809bb33439e72d99e3e9ef152cb5f076c8f196491b2f02d97f15349ef
ppc64le	nginx-mod-devel-1.20.1-28.el9_8.2.alma.1.ppc64le.rpm	3ab571e7e8033d181438899dff5fc9e24b90aa00a7f3c6a09107de904a1e19b8
ppc64le	nginx-mod-http-xslt-filter-1.20.1-28.el9_8.2.alma.1.ppc64le.rpm	907f57e12ea9bbb4aaa328a963819ad949bff54df405c8cdee8ba88605850df1
ppc64le	nginx-mod-http-image-filter-1.20.1-28.el9_8.2.alma.1.ppc64le.rpm	b894581c64619a3c74d201b0d82b4988e5c4e2221b2c7aa67af2db2ea2e1911a
ppc64le	nginx-core-1.20.1-28.el9_8.2.alma.1.ppc64le.rpm	fd60d5274d769866c32374d8ccb59597b2714c61abedccc67439a325a53b8afb
s390x	nginx-mod-mail-1.20.1-28.el9_8.2.alma.1.s390x.rpm	12e1beb340f568bc0d9d3d635fd0797d7832663e2c30e457f28883bfb447fc13
s390x	nginx-mod-devel-1.20.1-28.el9_8.2.alma.1.s390x.rpm	30e51fe9852fefa5e54e39482e7d616d0cc4e7db685dbe3d3f02d80dcc8561a5
s390x	nginx-mod-http-xslt-filter-1.20.1-28.el9_8.2.alma.1.s390x.rpm	4350b31901401251289916f0212b9d570f161ebd19b458bc35cdfc7d0618fded
s390x	nginx-mod-http-image-filter-1.20.1-28.el9_8.2.alma.1.s390x.rpm	4520cc63d526dafb0d1149972eeab78bc15873dea841dea149590d83ca3e6aa8
s390x	nginx-1.20.1-28.el9_8.2.alma.1.s390x.rpm	aaf19d850d9b49d0a6e4b081031580794055873098779a827a4b0b22638eedfd
s390x	nginx-mod-stream-1.20.1-28.el9_8.2.alma.1.s390x.rpm	bdc20b4e4d59685dbc823a777b049ef3480ee0aabddd7e008f8ab314fd0900e1
s390x	nginx-mod-http-perl-1.20.1-28.el9_8.2.alma.1.s390x.rpm	e1555949003c49cbfebeda6fb9752e04d167162f19aaf007aa7c154abb2b77c4
s390x	nginx-core-1.20.1-28.el9_8.2.alma.1.s390x.rpm	f0b9b7c9d75fe81c551cb7e6e90634d555f6e5c6a4608dff12fbb458592411df
x86_64	nginx-mod-mail-1.20.1-28.el9_8.2.alma.1.x86_64.rpm	067c7aac6b5fe714fb261fad99e68d7ab3b4bfbeb37fae16580621a2f8f82aaf
x86_64	nginx-core-1.20.1-28.el9_8.2.alma.1.x86_64.rpm	543893ce101ca1354d61b8b912f09427d2938c56c52118d25a5f54c710806692
x86_64	nginx-mod-stream-1.20.1-28.el9_8.2.alma.1.x86_64.rpm	6b50e510f3249d856c73b2a17cb6db529c4e3c30bd4f77d3ada1818683a7e964
x86_64	nginx-mod-http-image-filter-1.20.1-28.el9_8.2.alma.1.x86_64.rpm	7f2d25cbe050c404aca51090487795cc33e6b02ab6cbd5ab464381491e763fee
x86_64	nginx-mod-http-xslt-filter-1.20.1-28.el9_8.2.alma.1.x86_64.rpm	b48a653534c37b1aad6578b63083726d7acc5c8ececa5f2e2b0e363caa22f131
x86_64	nginx-mod-http-perl-1.20.1-28.el9_8.2.alma.1.x86_64.rpm	c40b89314e9a0a6e254b06a794091115c5c03177195ca94a6e8561305217e8e6
x86_64	nginx-mod-devel-1.20.1-28.el9_8.2.alma.1.x86_64.rpm	e00be1d44a29e4e10735ff26af5be88f51c77908fabccaa71725bfb3a036594f
x86_64	nginx-1.20.1-28.el9_8.2.alma.1.x86_64.rpm	f1fa3ccf2912d871dd5c61d1c3dde9dc584c8d64465836a3a275ee2cd97cfd10

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.