OESA-2026-2801

Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2026-2801
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2026-2801.json
JSON Data
https://api.osv.dev/v1/vulns/OESA-2026-2801
Upstream
Published
2026-07-06T06:25:43Z
Modified
2026-07-06T06:45:09.793861065Z
Summary
nginx security update
Details

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server.

Security Fix(es):

NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion to 2 or grpcpass directives are used to proxy HTTP/2 traffic, the ignoreinvalidheaders directive is set to off, and the largeclientheader_buffers directive size is larger than 2 megabytes. A remote, unauthenticated attacker, along with conditions beyond their control, could send large headers while creating an upstream request. This may cause a heap-based buffer overflow in the NGINX worker process leading to a restart. Additionally, attackers can execute code on systems with Address Space Layout Randomization (ASLR) disabled or when the attacker can bypass ASLR.

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.(CVE-2026-42055)

NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpcharsetmodule module. When content is served or proxied through a location block with both sourcecharset utf-8; and a charset directive (for example, charset koi8-r;) configured, remote, unauthenticated attackers can send requests (in conjunction with conditions beyond their control) to cause a heap buffer over-read in the NGINX worker process, leading to limited disclosure of memory or a restart.

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.(CVE-2026-48142)

Database specific
{
    "severity": "High"
}
References

Affected packages

openEuler:24.03-LTS-SP3 / nginx

Package

Name
nginx
Purl
pkg:rpm/openEuler/nginx&distro=openEuler-24.03-LTS-SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.24.0-13.oe2403sp3

Ecosystem specific

{
    "aarch64": [
        "nginx-1.24.0-13.oe2403sp3.aarch64.rpm",
        "nginx-debuginfo-1.24.0-13.oe2403sp3.aarch64.rpm",
        "nginx-debugsource-1.24.0-13.oe2403sp3.aarch64.rpm",
        "nginx-mod-devel-1.24.0-13.oe2403sp3.aarch64.rpm",
        "nginx-mod-http-image-filter-1.24.0-13.oe2403sp3.aarch64.rpm",
        "nginx-mod-http-perl-1.24.0-13.oe2403sp3.aarch64.rpm",
        "nginx-mod-http-xslt-filter-1.24.0-13.oe2403sp3.aarch64.rpm",
        "nginx-mod-mail-1.24.0-13.oe2403sp3.aarch64.rpm",
        "nginx-mod-stream-1.24.0-13.oe2403sp3.aarch64.rpm"
    ],
    "noarch": [
        "nginx-all-modules-1.24.0-13.oe2403sp3.noarch.rpm",
        "nginx-filesystem-1.24.0-13.oe2403sp3.noarch.rpm",
        "nginx-help-1.24.0-13.oe2403sp3.noarch.rpm"
    ],
    "x86_64": [
        "nginx-1.24.0-13.oe2403sp3.x86_64.rpm",
        "nginx-debuginfo-1.24.0-13.oe2403sp3.x86_64.rpm",
        "nginx-debugsource-1.24.0-13.oe2403sp3.x86_64.rpm",
        "nginx-mod-devel-1.24.0-13.oe2403sp3.x86_64.rpm",
        "nginx-mod-http-image-filter-1.24.0-13.oe2403sp3.x86_64.rpm",
        "nginx-mod-http-perl-1.24.0-13.oe2403sp3.x86_64.rpm",
        "nginx-mod-http-xslt-filter-1.24.0-13.oe2403sp3.x86_64.rpm",
        "nginx-mod-mail-1.24.0-13.oe2403sp3.x86_64.rpm",
        "nginx-mod-stream-1.24.0-13.oe2403sp3.x86_64.rpm"
    ],
    "src": [
        "nginx-1.24.0-13.oe2403sp3.src.rpm"
    ]
}

Database specific

source
"https://repo.openeuler.org/security/data/osv/OESA-2026-2801.json"