Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2026:7343

Опубликовано: 10 апр. 2026
Источник: rocky
Оценка: Important

Описание

Important: nginx:1.26 security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.

Security Fix(es):

  • nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files (CVE-2026-32647)

  • NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module (CVE-2026-27654)

  • NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file (CVE-2026-27784)

  • NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled (CVE-2026-27651)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 9

НаименованиеАрхитектураРелизRPM
nginxx86_642.module+el9.7.0+40103+2443f6d1nginx-1.26.3-2.module+el9.7.0+40103+2443f6d1.x86_64.rpm
nginx-all-modulesnoarch2.module+el9.7.0+40103+2443f6d1nginx-all-modules-1.26.3-2.module+el9.7.0+40103+2443f6d1.noarch.rpm
nginx-corex86_642.module+el9.7.0+40103+2443f6d1nginx-core-1.26.3-2.module+el9.7.0+40103+2443f6d1.x86_64.rpm
nginx-filesystemnoarch2.module+el9.7.0+40103+2443f6d1nginx-filesystem-1.26.3-2.module+el9.7.0+40103+2443f6d1.noarch.rpm
nginx-mod-develx86_642.module+el9.7.0+40103+2443f6d1nginx-mod-devel-1.26.3-2.module+el9.7.0+40103+2443f6d1.x86_64.rpm
nginx-mod-http-image-filterx86_642.module+el9.7.0+40103+2443f6d1nginx-mod-http-image-filter-1.26.3-2.module+el9.7.0+40103+2443f6d1.x86_64.rpm
nginx-mod-http-perlx86_642.module+el9.7.0+40103+2443f6d1nginx-mod-http-perl-1.26.3-2.module+el9.7.0+40103+2443f6d1.x86_64.rpm
nginx-mod-http-xslt-filterx86_642.module+el9.7.0+40103+2443f6d1nginx-mod-http-xslt-filter-1.26.3-2.module+el9.7.0+40103+2443f6d1.x86_64.rpm
nginx-mod-mailx86_642.module+el9.7.0+40103+2443f6d1nginx-mod-mail-1.26.3-2.module+el9.7.0+40103+2443f6d1.x86_64.rpm
nginx-mod-streamx86_642.module+el9.7.0+40103+2443f6d1nginx-mod-stream-1.26.3-2.module+el9.7.0+40103+2443f6d1.x86_64.rpm

Показывать по

Связанные CVE

CVE-2026-27651
CVE-2026-27654
CVE-2026-27784
CVE-2026-32647

Ссылки на источники

Исправления

Связанные уязвимости

rocky логотип

RLSA-2026:6923

rocky
29 дней назад

Important: nginx:1.24 security update

rocky логотип

RLSA-2026:6907

rocky
27 дней назад

Important: nginx:1.24 security update

rocky логотип

RLSA-2026:6906

rocky
27 дней назад

Important: nginx security update

oracle-oval логотип

ELSA-2026-7343

oracle-oval
26 дней назад

ELSA-2026-7343: nginx:1.26 security update (IMPORTANT)

oracle-oval логотип

ELSA-2026-7002

oracle-oval
29 дней назад

ELSA-2026-7002: nginx security update (IMPORTANT)