Release date:
2026-05-26 08:15:33 UTC
Description:
* SECURITY UPDATE: heap buffer overflow in ngx_http_rewrite_module
- debian/patches/CVE-2026-42945.patch: clear is_args flag in
ngx_http_script_regex_end_code to prevent incorrect escaping of
captures and possible buffer overrun.
- CVE-2026-42945
Updated packages:
-
nginx1.21_1.21.6-1~bookworm+tuxcare.els6_amd64.deb
sha:b6a0f6acd3f47aac86da636c5a866de7759dcc52
-
nginx1.21_1.21.6-1~bookworm+tuxcare.els6_arm64.deb
sha:fb9cc52d4c83d1d11163ff7c86ec202a7db604ca
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
