openSUSE NGINX Important Patch Buffer Overflow Advisory 2026-20784
Source: Linuxsecurity
Published:
<p>- CVE-2026-1642: plain text data injection into the response from an upstream proxied server (bsc#1257675).</p> <p>- CVE-2026-27654: buffer overflow in the NGINX worker process via the `ngx_http_dav_module module` (bsc#1260416).</p> <p>- CVE-2026-27784: NGINX worker memory over-read or over-write