Описание
Important: nginx:1.24 security update
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
-
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files (CVE-2026-32647)
-
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module (CVE-2026-27654)
-
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file (CVE-2026-27784)
-
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled (CVE-2026-27651)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Затронутые продукты
Rocky Linux 8
Ссылки на источники
Исправления
- Red Hat - 2449598
- Red Hat - 2450776
- Red Hat - 2450785
- Red Hat - 2450791
