Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2026-7343

Опубликовано: 11 апр. 2026
Источник: oracle-oval
Платформа: Oracle Linux 9

Описание

ELSA-2026-7343: nginx:1.26 security update (IMPORTANT)

[2:1.26.3-2.0.1.1]

  • Require oracle-indexhtml

[2:1.26.3-6]

  • Resolves: RHEL-157887 - CVE-2026-32647 nginx:1.26/nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files

[2:1.26.3-5]

  • Resolves: RHEL-159446 - CVE-2026-27651 nginx:1.26/nginx: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled

[2:1.26.3-4]

  • Resolves: RHEL-159538 - CVE-2026-27784 nginx:1.26/nginx: NGINX: Denial of Service due to memory corruption via crafted MP4 file

[2:1.26.3-3]

  • Resolves: RHEL-159559 - CVE-2026-27654 nginx:1.26/nginx: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module

[2:1.26.3-2]

  • nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)

[2:1.26.3-1]

  • New version 1.26.3

[2:1.26.2-4]

  • Use systemd-sysusers

[2:1.26.2-3]

  • Fix PKCS-11 support

[2:1.26.2-2]

  • Adjust QE files

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

Module nginx:1.26 is enabled

nginx

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-all-modules

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-core

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-filesystem

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-devel

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-http-image-filter

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-http-perl

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-http-xslt-filter

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-mail

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-stream

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

Oracle Linux x86_64

Module nginx:1.26 is enabled

nginx

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-all-modules

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-core

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-filesystem

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-devel

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-http-image-filter

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-http-perl

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-http-xslt-filter

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-mail

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

nginx-mod-stream

1.26.3-2.0.1.module+el9.7.0+90870+e191ebad.1

Связанные CVE

CVE-2026-27651
CVE-2026-27654
CVE-2026-27784
CVE-2026-32647

Ссылки на источники

Связанные уязвимости

rocky логотип

RLSA-2026:7343

rocky
27 дней назад

Important: nginx:1.26 security update

rocky логотип

RLSA-2026:6923

rocky
29 дней назад

Important: nginx:1.24 security update

rocky логотип

RLSA-2026:6907

rocky
27 дней назад

Important: nginx:1.24 security update

rocky логотип

RLSA-2026:6906

rocky
27 дней назад

Important: nginx security update

oracle-oval логотип

ELSA-2026-7002

oracle-oval
29 дней назад

ELSA-2026-7002: nginx security update (IMPORTANT)