Stay Vigilant with Timely Linux Security Advisories

security advisorymoderatenginx

Rocky Linux 8 RLSA-2026-5593 apache High Risk Vulnerability Detected

Moderate: nginx:1.24 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:5581", "synopsis": "Moderate: nginx:1.24 security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for module.nginx, nginx.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2436738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2436738", "description": ""}], "cves": [{"name": "CVE-2026-1642", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1642", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "5.9", "cwe": "CWE-349"}], "references": [], "publishedAt": "2026-04-07T00:01:14.755526Z", "rpms": {"Rocky Linux 8": {"nvras": ["nginx-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-1:1.24.0-2.module+el8.10.0+40137+188e04f4.src.rpm", "nginx-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-all-modules-1:1.24.0-2.module+el8.10.0+40137+188e04f4.noarch.rpm", "nginx-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-debugsource-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-debugsource-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm","nginx-filesystem-1:1.24.0-2.module+el8.10.0+40137+188e04f4.noarch.rpm", "nginx-mod-devel-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-devel-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-image-filter-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-image-filter-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-image-filter-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-image-filter-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-perl-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-perl-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-perl-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-perl-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-xslt-filter-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-xslt-filter-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-xslt-filter-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-xslt-filter-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-mail-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-mail-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-mail-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-mail-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-stream-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-stream-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-stream-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-stream-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Moderate nginx:1.24 security update addressing data injection risks on Rocky Linux 8. Important fixes available now..nginx security, Rocky Linux nginx update, TLS proxied connections fix. . LinuxSecurity.com Team

Apr 07, 2026 Rocky Linux

security advisorymoderatenginx

Rocky Linux 8 nginx Moderate Risk SQL Injection Flaw RLSA-2026-5600

Moderate: nginx:1.24 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:5581", "synopsis": "Moderate: nginx:1.24 security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for module.nginx, nginx.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2436738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2436738", "description": ""}], "cves": [{"name": "CVE-2026-1642", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-1642", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "5.9", "cwe": "CWE-349"}], "references": [], "publishedAt": "2026-04-07T00:01:14.755526Z", "rpms": {"Rocky Linux 8": {"nvras": ["nginx-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-1:1.24.0-2.module+el8.10.0+40137+188e04f4.src.rpm", "nginx-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-all-modules-1:1.24.0-2.module+el8.10.0+40137+188e04f4.noarch.rpm", "nginx-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-debugsource-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-debugsource-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm","nginx-filesystem-1:1.24.0-2.module+el8.10.0+40137+188e04f4.noarch.rpm", "nginx-mod-devel-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-devel-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-image-filter-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-image-filter-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-image-filter-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-image-filter-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-perl-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-perl-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-perl-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-perl-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-xslt-filter-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-xslt-filter-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-http-xslt-filter-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-http-xslt-filter-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-mail-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-mail-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-mail-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-mail-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-stream-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-stream-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm", "nginx-mod-stream-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.aarch64.rpm", "nginx-mod-stream-debuginfo-1:1.24.0-2.module+el8.10.0+40137+188e04f4.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Critical security update for nginx on Rocky Linux with a moderate severity regarding data injection risks.. RockyLinux Security Update, nginx TLS Vulnerability, Moderate Security Advisory, nginx Data Injection Issue. . LinuxSecurity.com Team

Apr 07, 2026 Rocky Linux

security advisorymoderatenginx

Red Hat Enterprise Linux 10 apache Security Flaw Advisory RLSA-2026-4732

Moderate: nginx security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:4705", "synopsis": "Moderate: nginx security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for nginx.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2436738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2436738", "description": ""}], "cves": [{"name": "CVE-2026-1642", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-1642", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "5.9", "cwe": "CWE-349"}], "references": [], "publishedAt": "2026-03-27T12:07:50.770013Z", "rpms": {"Rocky Linux 10": {"nvras": ["nginx-core-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.src.rpm","nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-filesystem-2:1.26.3-2.el10_1.noarch.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm","nginx-mod-mail-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-all-modules-2:1.26.3-2.el10_1.noarch.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A moderate nginx update for Rocky Linux addresses a data injection issue through TLS connections, ensuring system safety.. nginx update,RLSA-2026:4705,Rocky Linux 10,TLS attack,moderate severity. . LinuxSecurity.com Team

Mar 27, 2026 Rocky Linux

security advisorymoderatenginx

Ubuntu Server 22 nginx Core Data Authenticity RLSB-2038-6749

Moderate: nginx security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:4705", "synopsis": "Moderate: nginx security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for nginx.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2436738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2436738", "description": ""}], "cves": [{"name": "CVE-2026-1642", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1642", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "5.9", "cwe": "CWE-349"}], "references": [], "publishedAt": "2026-03-27T12:07:50.770013Z", "rpms": {"Rocky Linux 10": {"nvras": ["nginx-core-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.src.rpm","nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-filesystem-2:1.26.3-2.el10_1.noarch.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm","nginx-mod-mail-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-all-modules-2:1.26.3-2.el10_1.noarch.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Update available for nginx on Rocky Linux 10 addressing moderate data injection risks via TLS. Learn more about the fix.. nginx security update, Rocky Linux 10 update, data injection TLS, nginx threat mitigation. . LinuxSecurity.com Team

Mar 27, 2026 Rocky Linux

security advisorymoderatenginx

Fedora Core 39 apache Update RLSA-2026-3510 CVE-2026-1926

Moderate: nginx security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:4705", "synopsis": "Moderate: nginx security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for nginx.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2436738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2436738", "description": ""}], "cves": [{"name": "CVE-2026-1642", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-1642", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "5.9", "cwe": "CWE-349"}], "references": [], "publishedAt": "2026-03-27T12:07:50.770013Z", "rpms": {"Rocky Linux 10": {"nvras": ["nginx-core-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.src.rpm","nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-filesystem-2:1.26.3-2.el10_1.noarch.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm","nginx-mod-mail-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-all-modules-2:1.26.3-2.el10_1.noarch.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Essential nginx security update available for Rocky Linux 10 to mitigate data injection risks. Update recommended.. nginx security update, Rocky Linux 10, TLS proxy attack, nginx data injection. . LinuxSecurity.com Team

Mar 27, 2026 Rocky Linux

security advisorymoderatenginx

Fedora 37 Apache Security Update RLSA-2026-6723 Mitigates Risks Effectively

Moderate: nginx security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:4705", "synopsis": "Moderate: nginx security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for nginx.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2436738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2436738", "description": ""}], "cves": [{"name": "CVE-2026-1642", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1642", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "5.9", "cwe": "CWE-349"}], "references": [], "publishedAt": "2026-03-27T12:07:50.770013Z", "rpms": {"Rocky Linux 10": {"nvras": ["nginx-core-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.src.rpm","nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-filesystem-2:1.26.3-2.el10_1.noarch.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm","nginx-mod-mail-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-all-modules-2:1.26.3-2.el10_1.noarch.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux nginx update addresses moderate security risk from data injection on TLS connections by improving encryption.. Rocky Linux nginx security patch update TLS. . LinuxSecurity.com Team

Mar 27, 2026 Rocky Linux

security advisorymoderatenginx

Rocky Linux 10 nginx Security Update Moderate Risk Data Leak RLSB-2026-4711

Moderate: nginx security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:4705", "synopsis": "Moderate: nginx security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for nginx.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2436738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2436738", "description": ""}], "cves": [{"name": "CVE-2026-1642", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1642", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "5.9", "cwe": "CWE-349"}], "references": [], "publishedAt": "2026-03-27T12:07:50.770013Z", "rpms": {"Rocky Linux 10": {"nvras": ["nginx-core-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.src.rpm","nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-filesystem-2:1.26.3-2.el10_1.noarch.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm","nginx-mod-mail-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-all-modules-2:1.26.3-2.el10_1.noarch.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. nginx on Rocky Linux 10 receives a moderate security fix for a data injection risk affecting TLS proxies.. nginx security patch. . LinuxSecurity.com Team

Mar 27, 2026 Rocky Linux

security advisorymoderatenginx

Fedora Server 39 Nginx Essential Upgrade RLSB-2026-3490

Moderate: nginx security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:4705", "synopsis": "Moderate: nginx security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for nginx.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections (CVE-2026-1642)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2436738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2436738", "description": ""}], "cves": [{"name": "CVE-2026-1642", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-1642", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "5.9", "cwe": "CWE-349"}], "references": [], "publishedAt": "2026-03-27T12:07:50.770013Z", "rpms": {"Rocky Linux 10": {"nvras": ["nginx-core-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.src.rpm","nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-filesystem-2:1.26.3-2.el10_1.noarch.rpm", "nginx-core-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-image-filter-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.s390x.rpm", "nginx-core-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-mail-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-image-filter-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm","nginx-mod-mail-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-core-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-xslt-filter-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-mail-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-all-modules-2:1.26.3-2.el10_1.noarch.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.s390x.rpm", "nginx-mod-http-perl-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-devel-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.aarch64.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-mod-stream-debuginfo-2:1.26.3-2.el10_1.s390x.rpm", "nginx-debugsource-2:1.26.3-2.el10_1.x86_64.rpm", "nginx-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-perl-debuginfo-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-mod-http-xslt-filter-2:1.26.3-2.el10_1.ppc64le.rpm", "nginx-core-2:1.26.3-2.el10_1.s390x.rpm", "nginx-2:1.26.3-2.el10_1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. nginx security update for Rocky Linux addresses a moderate risk data injection issue via man-in-the-middle attacks.. Rocky Linux nginx security TLS data injection vulnerability. . LinuxSecurity.com Team

Mar 27, 2026 Rocky Linux

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

Rocky Linux 8 RLSA-2026-5593 apache High Risk Vulnerability Detected

Rocky Linux 8 nginx Moderate Risk SQL Injection Flaw RLSA-2026-5600

Red Hat Enterprise Linux 10 apache Security Flaw Advisory RLSA-2026-4732

Ubuntu Server 22 nginx Core Data Authenticity RLSB-2038-6749

Fedora Core 39 apache Update RLSA-2026-3510 CVE-2026-1926

Fedora 37 Apache Security Update RLSA-2026-6723 Mitigates Risks Effectively

Rocky Linux 10 nginx Security Update Moderate Risk Data Leak RLSB-2026-4711

Fedora Server 39 Nginx Essential Upgrade RLSB-2026-3490

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!