Updated nginx packages fix security vulnerabilities
Publication date: 26 May 2026Modification date: 26 May 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-40460 , CVE-2026-40701 , CVE-2026-42926 , CVE-2026-42934 , CVE-2026-42945 , CVE-2026-42946
Description
NGINX ngx_quic_module vulnerability. (CVE-2026-40460)
NGINX ngx_http_ssl_module vulnerability. (CVE-2026-40701)
NGINX ngx_http_proxy_v2_module vulnerability. (CVE-2026-42926)
NGINX ngx_http_charset_module vulnerability. (CVE-2026-42934)
NGINX ngx_http_rewrite_module vulnerability. (CVE-2026-42945)
NGINX ngx_http_scgi_module and ngx_http_uwsgi_module vulnerability.
(CVE-2026-42946)
References
- https://bugs.mageia.org/show_bug.cgi?id=35529
- https://www.openwall.com/lists/oss-security/2026/05/13/7
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40460
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40701
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42926
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42934
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42945
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42946
SRPMS
9/core
- nginx-1.30.1-1.mga9