{"schema_version":"1.7.2","id":"OESA-2026-2801","modified":"2026-07-06T06:25:43Z","published":"2026-07-06T06:25:43Z","upstream":["CVE-2026-42055","CVE-2026-48142"],"summary":"nginx security update","details":"NGINX is a free, open-source, high-performance HTTP server and reverse proxy,  as well as an IMAP/POP3 proxy server.\r\n\r\nSecurity Fix(es):\n\nNGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and ngx_http_grpc_module modules. This vulnerability exists when the proxy_http_version to 2 or grpc_pass directives are used to proxy HTTP/2 traffic, the ignore_invalid_headers directive is set to off, and the large_client_header_buffers directive size is larger than 2 megabytes. A remote, unauthenticated attacker, along with conditions beyond their control, could send large headers while creating an upstream request. This may cause a heap-based buffer overflow in the NGINX worker process leading to a restart. Additionally, attackers can execute code on systems with Address Space Layout Randomization (ASLR) disabled or when the attacker can bypass ASLR. \n\n\nNote: Software versions which have reached End of Technical Support (EoTS) are not evaluated.(CVE-2026-42055)\n\nNGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_charset_module module. When content is served or proxied through a location block with both source_charset utf-8; and a charset directive (for example, charset koi8-r;) configured, remote, unauthenticated attackers can send requests (in conjunction with conditions beyond their control) to cause a heap buffer over-read in the NGINX worker process, leading to limited disclosure of memory or a restart. \n\n\nNote: Software versions which have reached End of Technical Support (EoTS) are not evaluated.(CVE-2026-48142)","affected":[{"package":{"ecosystem":"openEuler:24.03-LTS-SP3","name":"nginx","purl":"pkg:rpm/openEuler/nginx&distro=openEuler-24.03-LTS-SP3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.24.0-13.oe2403sp3"}]}],"ecosystem_specific":{"aarch64":["nginx-1.24.0-13.oe2403sp3.aarch64.rpm","nginx-debuginfo-1.24.0-13.oe2403sp3.aarch64.rpm","nginx-debugsource-1.24.0-13.oe2403sp3.aarch64.rpm","nginx-mod-devel-1.24.0-13.oe2403sp3.aarch64.rpm","nginx-mod-http-image-filter-1.24.0-13.oe2403sp3.aarch64.rpm","nginx-mod-http-perl-1.24.0-13.oe2403sp3.aarch64.rpm","nginx-mod-http-xslt-filter-1.24.0-13.oe2403sp3.aarch64.rpm","nginx-mod-mail-1.24.0-13.oe2403sp3.aarch64.rpm","nginx-mod-stream-1.24.0-13.oe2403sp3.aarch64.rpm"],"noarch":["nginx-all-modules-1.24.0-13.oe2403sp3.noarch.rpm","nginx-filesystem-1.24.0-13.oe2403sp3.noarch.rpm","nginx-help-1.24.0-13.oe2403sp3.noarch.rpm"],"src":["nginx-1.24.0-13.oe2403sp3.src.rpm"],"x86_64":["nginx-1.24.0-13.oe2403sp3.x86_64.rpm","nginx-debuginfo-1.24.0-13.oe2403sp3.x86_64.rpm","nginx-debugsource-1.24.0-13.oe2403sp3.x86_64.rpm","nginx-mod-devel-1.24.0-13.oe2403sp3.x86_64.rpm","nginx-mod-http-image-filter-1.24.0-13.oe2403sp3.x86_64.rpm","nginx-mod-http-perl-1.24.0-13.oe2403sp3.x86_64.rpm","nginx-mod-http-xslt-filter-1.24.0-13.oe2403sp3.x86_64.rpm","nginx-mod-mail-1.24.0-13.oe2403sp3.x86_64.rpm","nginx-mod-stream-1.24.0-13.oe2403sp3.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2801"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-42055"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-48142"}],"database_specific":{"severity":"High"}}
