-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 15 May 2026 14:05:41 +0000
Source: nginx
Architecture: source
Version: 1.22.1-9+deb12u7
Distribution: bookworm-security
Urgency: medium
Maintainer: Debian Nginx Maintainers <pkg-nginx-maintainers@alioth-lists.debian.net>
Changed-By: Jan Mojžíš <janmojzis@debian.org>
Changes:
 nginx (1.22.1-9+deb12u7) bookworm-security; urgency=medium
 .
   * backport changes from upstream nginx,c buffer overflow in
     the ngx_http_rewrite_module (CVE-2026-42945), buffer overread in
     the ngx_http_scgi_module and ngx_http_uwsgi_module (CVE-2026-42946),
     resolver use-after-free in OCSP (CVE-2026-40701), buffer overread in
     the ngx_http_charset_module (CVE-2026-42934)
     * d/p/CVE-2026-42945.patch add
     * d/p/CVE-2026-42946.patch add
     * d/p/CVE-2026-40701.patch add
     * d/p/CVE-2026-42934.patch add
Checksums-Sha1:
 18b7ce92869a41a96a22215c06ba7831d3fdce3f 3586 nginx_1.22.1-9+deb12u7.dsc
 45a89797f7c789287c7f663811efbbd19e84f154 1073948 nginx_1.22.1.orig.tar.gz
 103ca31e2d9b742d6fd650298ef4b6ad1db87e86 81412 nginx_1.22.1-9+deb12u7.debian.tar.xz
 df54fb389705531c76cb864e1dec879e6a323df7 8828 nginx_1.22.1-9+deb12u7_source.buildinfo
Checksums-Sha256:
 e05d263443da413ed37b1b8414dc531e94778806cbc2c82cd8a7f0f305171c0d 3586 nginx_1.22.1-9+deb12u7.dsc
 9ebb333a9e82b952acd3e2b4aeb1d4ff6406f72491bab6cd9fe69f0dea737f31 1073948 nginx_1.22.1.orig.tar.gz
 0b56c6d07a8eb6c0c7e9f52a4ed59a397e6732ec25c831c475e8f55a8eab670d 81412 nginx_1.22.1-9+deb12u7.debian.tar.xz
 b70b3c3d2fb6a90fb36a4f22a50182ef896f55d09b303048d470416dc88cdb52 8828 nginx_1.22.1-9+deb12u7_source.buildinfo
Files:
 7180eed9f78c957736f784af08351b08 3586 httpd optional nginx_1.22.1-9+deb12u7.dsc
 8296d957561aeed0261d9be4d3decaec 1073948 httpd optional nginx_1.22.1.orig.tar.gz
 01ef64b3cbbbb329e70f07f7af5aeec2 81412 httpd optional nginx_1.22.1-9+deb12u7.debian.tar.xz
 2b5bdfa7fdadd0055ed4dbea8996865a 8828 httpd optional nginx_1.22.1-9+deb12u7_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=fD/c
-----END PGP SIGNATURE-----