Release date:
2026-05-26 07:45:13 UTC
Description:
* SECURITY UPDATE: heap buffer overflow in ngx_http_rewrite_module
- debian/patches/CVE-2026-42945.patch: clear is_args flag in
ngx_http_script_regex_end_code to prevent incorrect escaping of
captures and possible buffer overrun.
- CVE-2026-42945
Updated packages:
-
nginx1.21_1.21.6-1~trixie+tuxcare.els6_amd64.deb
sha:2216a2473f9453fddac3db6803bc02d3813aebf0
-
nginx1.21_1.21.6-1~trixie+tuxcare.els6_arm64.deb
sha:b75f23c2c0cbea02bc99256d6272b15b2e5e6893
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
