Release date:
2026-05-26 07:34:49 UTC
Description:
* SECURITY UPDATE: Heap buffer overrun in ngx_http_rewrite_module
- debian/patches/CVE-2026-42945.patch: clear is_args flag in
ngx_http_script_regex_end_code to fix escaping of captures and
possible buffer overrun
- CVE-2026-42945
Updated packages:
-
nginx1.25_1.25.5-1~trixie+tuxcare.els4_amd64.deb
sha:a29587519359964885b990f08dc988d8859f8fff
-
nginx1.25_1.25.5-1~trixie+tuxcare.els4_arm64.deb
sha:f387cc247c32a937e51ffe52ec5d11f57920841a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
