ALSA-2026:19372

See a problem?

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:19372.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2026:19372

Related

CVE-2026-42945

Published

2026-05-19T00:00:00Z

Modified

2026-05-26T16:00:29.747873983Z

Summary

Critical: nginx:1.26 security update

Details

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.

Security Fix(es):

nginx: NGINX: Arbitrary Code Execution Vulnerability (CVE-2026-42945)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:9 / nginx-all-modules

Package

Name: nginx-all-modules
Purl: pkg:rpm/almalinux/nginx-all-modules

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:1.26.3-9.module_el9.8.0+247+aa936373

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:19372.json"

AlmaLinux:9 / nginx-filesystem

Package

Name: nginx-filesystem
Purl: pkg:rpm/almalinux/nginx-filesystem

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:1.26.3-9.module_el9.8.0+247+aa936373

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:19372.json"