[CLSA-2026:1777396606] nginx: Fix of CVE-2026-27654
Type:
security
Severity:
Important
Release date:
2026-04-28 17:16:51 UTC
Description:
- CVE-2026-27654: fix heap buffer overflow in ngx_http_dav_module COPY/MOVE with alias
Updated packages:
  • nginx-1.14.1-9.module_el8.4.0+2374+826f574f.tuxcare.els5.x86_64.rpm
    sha:cc2c4b3ec379eac51d3e06fef1f02ef51c0859a5ce12b172b9cda55b9b10ca26
  • nginx-all-modules-1.14.1-9.module_el8.4.0+2374+826f574f.tuxcare.els5.noarch.rpm
    sha:49deec35e9efdeadc59f7f02fc4898483705d050719f0a81e7fb6119a70cbee5
  • nginx-filesystem-1.14.1-9.module_el8.4.0+2374+826f574f.tuxcare.els5.noarch.rpm
    sha:6fcbc33daf781a5dfa9388ac63e5aa93cf75b65b2b0ae941a6a685a7c2ca48fd
  • nginx-mod-http-image-filter-1.14.1-9.module_el8.4.0+2374+826f574f.tuxcare.els5.x86_64.rpm
    sha:19c483756880c9e39c8e094bdd5138201767f3fda6d3612693c84b2039b7aed5
  • nginx-mod-http-perl-1.14.1-9.module_el8.4.0+2374+826f574f.tuxcare.els5.x86_64.rpm
    sha:91bf707002f0ddf501246095b2457bf0dd7eaa98faf28086c9cd1728fd409e75
  • nginx-mod-http-xslt-filter-1.14.1-9.module_el8.4.0+2374+826f574f.tuxcare.els5.x86_64.rpm
    sha:b18f27ea38e620f88c676dac8bfc92644b0c2b8b1b7592243598424b46eeb59f
  • nginx-mod-mail-1.14.1-9.module_el8.4.0+2374+826f574f.tuxcare.els5.x86_64.rpm
    sha:537b875c37e2e25d275f8001f3d8d128e2317923a31a4d566265c4fb9d012c21
  • nginx-mod-stream-1.14.1-9.module_el8.4.0+2374+826f574f.tuxcare.els5.x86_64.rpm
    sha:ef0fdfc5006ef1ef31a4af392b20c101c7566285028b640b7a281cc70f33176c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.