ALSA-2026:19371

See a problem?
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:19371.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2026:19371
Related
  • CVE-2026-42945
Published
2026-05-19T00:00:00Z
Modified
2026-05-26T16:00:29.745839472Z
Summary
Critical: nginx:1.24 security update
Details

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.

Security Fix(es):

  • nginx: NGINX: Arbitrary Code Execution Vulnerability (CVE-2026-42945)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:9 / nginx-all-modules

Package

Name
nginx-all-modules
Purl
pkg:rpm/almalinux/nginx-all-modules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:1.24.0-7.module_el9.8.0+246+ef96a02d.1.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:19371.json"

AlmaLinux:9 / nginx-filesystem

Package

Name
nginx-filesystem
Purl
pkg:rpm/almalinux/nginx-filesystem

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:1.24.0-7.module_el9.8.0+246+ef96a02d.1.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:19371.json"