ALSA-2026:29151

[ALSA-2026:29151] Important: nginx:1.26 security update

Type:

security

Severity:

important

Release date:

2026-06-25

Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.   

Security Fix(es):  

  * nginx: ngx_http_rewrite_module: code execution and denial of service (CVE-2026-9256)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	nginx-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.aarch64.rpm	31b6e94d95a78136459a08457035b026fc3b0b84384d84585a2ac4d89e8e05a7
aarch64	nginx-mod-http-image-filter-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.aarch64.rpm	358bf797566457e09dbc71443c172d304019de844bbdc27dcf2bfbd96558ff18
aarch64	nginx-mod-http-perl-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.aarch64.rpm	44c20cc250355ee628ccb5cd085f24aae97579b1c3bd1e6cf3f574511af240ed
aarch64	nginx-mod-stream-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.aarch64.rpm	44c66b434a2aa012439fd2d71aec511978498e796bc46ed2bdf7182fd8725410
aarch64	nginx-mod-http-xslt-filter-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.aarch64.rpm	53142ae804df89c8af0faf7593656b4561e3bffb39d495872eee612b4bfbdb49
aarch64	nginx-core-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.aarch64.rpm	8de9870b4adf169860ff59ec70e97cba4fb4491196b4349ea9e36ea9863b7c5b
aarch64	nginx-mod-mail-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.aarch64.rpm	9e118ea3d277697ca9c5c1078dac29d63a8257f3dd739319f626492c56ea624b
aarch64	nginx-mod-devel-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.aarch64.rpm	b1779cef76db81eb1e9b0bd90a17f3b64a64ac04770b8a001265380f513ea256
noarch	nginx-filesystem-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.noarch.rpm	8f8165aa94a5caf0242030ba85c296e43e310117a9c4ab97817fccb0da660f2a
noarch	nginx-all-modules-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.noarch.rpm	d8b17db41a4088718e5582fd2690997c2a0eb233e98d547a30890ff8befdbf05
ppc64le	nginx-mod-http-xslt-filter-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.ppc64le.rpm	0e38c56ece62841767d3df9077f258eb83b0f75a37d104a45139bddc675055f4
ppc64le	nginx-mod-devel-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.ppc64le.rpm	11f88a6c81ef851d9430499903d4233ac8d8405f325bff9570021ce2188d56da
ppc64le	nginx-mod-mail-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.ppc64le.rpm	12b2e669d1d40ba56a02d75832bc64265c899ecbc62ad9462ef1201afb7dcaac
ppc64le	nginx-mod-http-image-filter-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.ppc64le.rpm	2b2a8dde858b117ad8ee4a7969479aaee6af6ca84d16649fb5114186807601c6
ppc64le	nginx-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.ppc64le.rpm	5d2cddcb6fc1c87c4c2aea7134eb2d56f77d5612cf02e3fea801968013ba64ea
ppc64le	nginx-mod-stream-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.ppc64le.rpm	b1c68476d9264dc43eccc6f79f844e29ae5c4cf8c556617d60b0a3c25760981d
ppc64le	nginx-mod-http-perl-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.ppc64le.rpm	ca00dc1b177c6e20ad955401f2aea395f558b9ace34992bdd8797ae8f6b1d5f3
ppc64le	nginx-core-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.ppc64le.rpm	d5ec9199826657f4afed34a2ad532336666e7b3fe6662fb14e2676452b3a4502
s390x	nginx-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.s390x.rpm	0950c6ad56b2a7c171ad82671a18ae96a61f78e36c74f5d101f2b4b499826877
s390x	nginx-core-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.s390x.rpm	10bf6fe415404c9a361eb967f286512b866967bf5adcb37b89ab73a737082821
s390x	nginx-mod-devel-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.s390x.rpm	44657bf28b5a1b2afa5a69c6e4423bfe79144c5ffd76a1da7add1fde39540e18
s390x	nginx-mod-stream-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.s390x.rpm	73e116c8bae6db74a8c16129dd8ee2600dec2f04b0e5bbc8e87513fb40af3fdc
s390x	nginx-mod-http-xslt-filter-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.s390x.rpm	83650abc6cc479ed0f91448c86baafb6cb39d6abedb284974e86fb4cfbd69d73
s390x	nginx-mod-http-perl-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.s390x.rpm	9412e79f525b9413ba454ec8b7640b7fb6662a04e6c5b497831cd9e890621087
s390x	nginx-mod-http-image-filter-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.s390x.rpm	bae2cd095c254cda5b77130bf056922efdd39fa6066392c1ab1eace6c9f151cf
s390x	nginx-mod-mail-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.s390x.rpm	d60c318d55969ba35bff82a5ef49eb4dae79775bb256df70f1787e94d72136b6
x86_64	nginx-mod-mail-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.x86_64.rpm	25f6c65a0adff6992f73a96d5c4d14d94399039d92d601b3e153c4d9b5303e65
x86_64	nginx-mod-stream-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.x86_64.rpm	4f814a01317ac55e8c515a6b38309bd728e82d589e3d3f94725a925b70b18963
x86_64	nginx-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.x86_64.rpm	70523f11e961ae8144629aebab5f61f624d0f822aad54b10b69e859f6f023b82
x86_64	nginx-mod-http-perl-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.x86_64.rpm	996d44c4aaec3d8c28fee440cd7c143d5df3c67d38e8f84dd947126ee82a468a
x86_64	nginx-mod-http-image-filter-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.x86_64.rpm	a7b34a02a6efb2fbaed90684cdefe5b61df5080b3835024f971c29d72dc4d81a
x86_64	nginx-core-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.x86_64.rpm	a9c6ce2993370df8be0a5a849fefc239d7f9ffd7389920e7444e71e7a2c058de
x86_64	nginx-mod-http-xslt-filter-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.x86_64.rpm	ae716c65a44b498896fbbc81a615f42ff284c6a3c0569d8740d82da7c5d8c243
x86_64	nginx-mod-devel-1.26.3-9.module_el9.8.0+260+95b8e5ed.1.x86_64.rpm	e2a1d200a3f104ee943fd4d105c16013d3900645f2513cf1a175ef0e8cf8002f

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.