6453 matches found
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
A flaw was found in NGINX. When NGINX is configured to proxy HTTP/2 traffic using the ngxhttpproxyv2module or ngxhttpgrpcmodule with specific settings, a remote, unauthenticated attacker can send specially crafted large headers. This can trigger a heap-based buffer overflow, leading to a restart ...
Important: Red Hat Security Advisory: nginx security, bug fix, and enhancement update
An update for nginx is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
OESA-2026-2799 nginx security update
NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion ...
OESA-2026-2798 nginx security update
NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion ...
[SECURITY] [DLA 4667-1] nginx security update
Debian LTS Advisory DLA-4667-1 [email protected] https://www.debian.org/lts/security/ Carlos Henrique Lima Melara July 03, 2026 https://wiki.debian.org/LTS Package : nginx Version : 1.22.1-9+deb12u9 CVE ID : CVE-2026-42055 CVE-2026-48142 Debian Bug : 1140359 1140361 Multiple...
Debian dla-4667 : libnginx-mod-http-geoip - security update
The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4667 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4667-1 [email protected]...
CVE-2026-1580 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-2PF9-VR92-6H3V vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2026-24513 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-9H3P-52VH-959W vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2026-24514 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
CVE-2026-24512 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-JX8C-56MG-H6VP vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-4G2F-XCPH-2335 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller...
GHSA-4G2F-XCPH-2335 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
CVE-2026-24512 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
GHSA-2PF9-VR92-6H3V vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
CVE-2026-1580 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
GHSA-9H3P-52VH-959W vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...
GHSA-JX8C-56MG-H6VP vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, ingress-nginx-controller-fips...