[CLSA-2026:1779788913] Fix CVE(s): CVE-2026-9256
Type:
security
Severity:
Low
Release date:
2026-05-26 09:48:37 UTC
Description:
* SECURITY UPDATE: fix heap buffer overflow in ngx_http_rewrite_module with overlapping captures - debian/patches/CVE-2026-9256.patch: fix heap buffer overflow in ngx_http_rewrite_module with overlapping captures - CVE-2026-9256
Updated packages:
  • libnginx-mod-http-auth-pam_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:1a9629a454b63e4c4db8bc7f080cc6a331d9ee32
  • libnginx-mod-http-cache-purge_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:b0e97b50520c7fbcf2af5b8a7543044d50ab57bc
  • libnginx-mod-http-dav-ext_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:6280ac753a913de0633f50e922cc700f0762b14d
  • libnginx-mod-http-echo_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:706342ea8e7d453e64cd6ad6121b66f4de484e43
  • libnginx-mod-http-fancyindex_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:3a2ef3970d0145c28ef67e5e19239c328004bc6d
  • libnginx-mod-http-geoip_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:008d72344ef383086572a13440d02a517851653b
  • libnginx-mod-http-headers-more-filter_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:f8ded13e3d05313494e1a007635284d2c6bfa2f0
  • libnginx-mod-http-image-filter_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:5bdec2c5c5f3bdbeb497c82da96b860869445f38
  • libnginx-mod-http-lua_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:c231231c885eab11c8471ace555ad5d89a741565
  • libnginx-mod-http-ndk_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:83da0edebb7b9c02c6be2c090542c87298d59763
  • libnginx-mod-http-perl_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:c723e7f5f43cb23de445b707ca1be5c22d358d9f
  • libnginx-mod-http-subs-filter_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:3b59f0e2cc564a4049ec02ba50f8484de1e06fc1
  • libnginx-mod-http-uploadprogress_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:c8252798206328df38f44d7ca7de7ea3dbf5dd24
  • libnginx-mod-http-upstream-fair_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:5ebb18d45e8bbb3923dd65279c800087a2ebaf10
  • libnginx-mod-http-xslt-filter_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:8b04dec06ecfe1a3ac383676a94ec1b4b4a17014
  • libnginx-mod-mail_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:7427594a29c346d6e84336f23ec5c53c44594595
  • libnginx-mod-nchan_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:46304ab6752e11a0180f1a85d9fb12a2d759c601
  • libnginx-mod-rtmp_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:7c269882652b35647cace01b9dc768fbc86df3d5
  • libnginx-mod-stream_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:117c102382242b635de07968b92eba5d72b67a6f
  • nginx_1.14.0-0ubuntu1.11+tuxcare.els4_all.deb
    sha:fe3c46bfb63bfd3f35c9f09ccfd8ac36749a0ae5
  • nginx-common_1.14.0-0ubuntu1.11+tuxcare.els4_all.deb
    sha:165762357a81d6b218f8d109de3bde3f7db279d4
  • nginx-core_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:0d57527e46515e896ad3704bd8c313b520de44e2
  • nginx-doc_1.14.0-0ubuntu1.11+tuxcare.els4_all.deb
    sha:2449aa36392e84536925ca8e6ab95885016c7f9c
  • nginx-extras_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:a7a1e537ea3d5d3cb899b8fadf7e1bb270208f8a
  • nginx-full_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:950a5fa6d79e4368908e05e49bd6f35ca8f48268
  • nginx-light_1.14.0-0ubuntu1.11+tuxcare.els4_amd64.deb
    sha:f39c9a10881d5b5e36b403dfba32d632acd7f132
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.