Fedora 44 nginx-mod-brotli Update Addresses CVE Denial of Service Issues

fedora

April 25, 2026

nginx-mod-brotli: Rebuild for 1.28.3 nginx-mod-fancyindex: Rebuild for 1.28.3 nginx-mod-naxsi:

Summary

NGINX module for Brotli compression.

Update Information:

nginx-mod-brotli: Rebuild for 1.28.3 nginx-mod-fancyindex: Rebuild for 1.28.3 nginx-mod-naxsi: Rebuild for 1.28.3 nginx-mod-headers-more: Rebuild for 1.28.3 nginx-mod-vts: Rebuild for 1.28.3 nginx-mod-modsecurity: Rebuild for 1.28.3 nginx: Update to 1.28.3 fixes CVE-2026-27654, CVE-2026-27784, CVE-2026-32647, CVE-2026-27651, CVE-2026-28753, CVE-2026-28755

Topics Covered

security advisory denial of service fedora CVE fix nginx nginx-mod-brotli

Change Log

* Wed Mar 25 2026 Felix Kaechele - 1.0.0~rc-7 - Rebuild for 1.28.3

References

[ 1 ] Bug #2372546 - Use `systemctl kill` in logrotate postrotate script https://bugzilla.redhat.com/show_bug.cgi?id=2372546 [ 2 ] Bug #2393382 - nginx-upgrade: Support custom PID and config file locations https://bugzilla.redhat.com/show_bug.cgi?id=2393382 [ 3 ] Bug #2413647 - The default server (i.e. _) is not the default server https://bugzilla.redhat.com/show_bug.cgi?id=2413647 [ 4 ] Bug #2445461 - RFE: please enable the geoip module https://bugzilla.redhat.com/show_bug.cgi?id=2445461 [ 5 ] Bug #2450834 - CVE-2026-27651 nginx: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2450834 [ 6 ] Bug #2450837 - CVE-2026-27651 nginx: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2450837 [ 7 ] Bug #2450838 - CVE-2026...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-4de4d247a0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity

critical

Lowest

Low

Medium

High

Critical

Name: nginx-mod-brotli

Product: Fedora 44

Version: 1.0.0~rc

Release: 7.fc44

URL: https://github.com/google/ngx_brotli

Summary: NGINX module for Brotli compression

Topics Covered

security advisory denial of service fedora CVE fix nginx nginx-mod-brotli

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 44 nginx-mod-brotli Update Addresses CVE Denial of Service Issues

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 44 nginx-mod-brotli Update Addresses CVE Denial of Service Issues

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!