-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 05 Jun 2026 12:22:02 +0000
Source: nginx
Binary: libnginx-mod-http-geoip libnginx-mod-http-geoip-dbgsym libnginx-mod-http-image-filter libnginx-mod-http-image-filter-dbgsym libnginx-mod-http-perl libnginx-mod-http-perl-dbgsym libnginx-mod-http-xslt-filter libnginx-mod-http-xslt-filter-dbgsym libnginx-mod-mail libnginx-mod-mail-dbgsym libnginx-mod-stream libnginx-mod-stream-dbgsym libnginx-mod-stream-geoip libnginx-mod-stream-geoip-dbgsym nginx nginx-dbgsym nginx-extras
Architecture: armel
Version: 1.26.3-3+deb13u6
Distribution: trixie-security
Urgency: medium
Maintainer: armel Build Daemon (arm-ubc-03) <buildd_arm64-arm-ubc-03@buildd.debian.org>
Changed-By: Jan Mojžíš <janmojzis@debian.org>
Description:
 libnginx-mod-http-geoip - GeoIP HTTP module for Nginx
 libnginx-mod-http-image-filter - HTTP image filter module for Nginx
 libnginx-mod-http-perl - Perl module for Nginx
 libnginx-mod-http-xslt-filter - XSLT Transformation module for Nginx
 libnginx-mod-mail - Mail module for Nginx
 libnginx-mod-stream - Stream module for Nginx
 libnginx-mod-stream-geoip - GeoIP Stream module for Nginx
 nginx      - small, powerful, scalable web/proxy server
 nginx-extras - nginx web/proxy server (extended version)
Changes:
 nginx (1.26.3-3+deb13u6) trixie-security; urgency=medium
 .
   * Apply both patches to fix CVE-2026-42946. In the previous version,
     only one part of the patch was applied, so the fix was incomplete.
     This really fixes CVE-2026-42946, thanks to charles@debian.org for
     pointing it out.
     * d/p/CVE-2026-42946.patch rename to d/p/CVE-2026-42946.2.patch
     * d/p/CVE-2026-42946.1.patch add
   * backport fix for buffer overflow vulnerability in the
     ngx_http_rewrite_module (CVE-2026-9256) from upstream 1.30.2 nginx.
     * d/p/CVE-2026-9256.patch add
   * backport max_headers directive from upstream nginx. It limits the number
     of request headers accepted from clients. Fixes remote denial-of-service
     exploit.
     And move max_headers from core module to the ngx_http_header_count_module
     to avoid potential ABI breakage and keep all the 3rd party modules
     compatible with the new version of nginx without recompilation.
     A big thanks to Miao Wang for preparing the modification.
     Fixes TEMP-1138794-BADE22.
     * d/p/FIX-HTTP2bomb.patch add
Checksums-Sha1:
 a67698d48e4f9b57b6014eae5fd31feabc1a4a6f 38368 libnginx-mod-http-geoip-dbgsym_1.26.3-3+deb13u6_armel.deb
 d4a0bb0903c421fdb71e8dac7b1aa82b36fbc8fb 89152 libnginx-mod-http-geoip_1.26.3-3+deb13u6_armel.deb
 e80731885df6aa4b35aa32a4a46d4b5bcec34b4f 46224 libnginx-mod-http-image-filter-dbgsym_1.26.3-3+deb13u6_armel.deb
 277ba0f3237ff81c98d3d28a59d493226c9e673f 93148 libnginx-mod-http-image-filter_1.26.3-3+deb13u6_armel.deb
 f7ef9c95d61c4dab0526cef10596bd556856ed9f 108352 libnginx-mod-http-perl-dbgsym_1.26.3-3+deb13u6_armel.deb
 9d4007e52913e14ca534e896ce4b9bd6202ba03f 98948 libnginx-mod-http-perl_1.26.3-3+deb13u6_armel.deb
 d7558303cffb6bd5a8ba2f94b4679e4d5f295baa 54440 libnginx-mod-http-xslt-filter-dbgsym_1.26.3-3+deb13u6_armel.deb
 f45d24cf549e22290c2f9b3b5c4d5851f82a0a65 90344 libnginx-mod-http-xslt-filter_1.26.3-3+deb13u6_armel.deb
 10211d17c9732f1ef77b248cba8bc14a1578d5ba 109772 libnginx-mod-mail-dbgsym_1.26.3-3+deb13u6_armel.deb
 971283c14b7fba29a4e47ad39ce9d88f4336045e 118128 libnginx-mod-mail_1.26.3-3+deb13u6_armel.deb
 788aceab2c4e26077c6b6e3663d52b2326a43548 188816 libnginx-mod-stream-dbgsym_1.26.3-3+deb13u6_armel.deb
 17912b00565876f3fe98613d55f7e15f0b669857 24544 libnginx-mod-stream-geoip-dbgsym_1.26.3-3+deb13u6_armel.deb
 523b49398f00cd9e3f12cf36d5f0cd6f7822dba1 88460 libnginx-mod-stream-geoip_1.26.3-3+deb13u6_armel.deb
 dec603ef75820a94ffd14b93df0d87f39e9f38ec 142840 libnginx-mod-stream_1.26.3-3+deb13u6_armel.deb
 3efa4db13072de30040ce25ed64777996bcefe6d 1320436 nginx-dbgsym_1.26.3-3+deb13u6_armel.deb
 1bd8fa7df4d3ef727d5e73eb182d16f01155f897 84488 nginx-extras_1.26.3-3+deb13u6_armel.deb
 0a87aa92f75cd79797f98bd4c891f865e84ff031 13800 nginx_1.26.3-3+deb13u6_armel-buildd.buildinfo
 5dfa2967a7512ca05b4650be57d48b2284ddf1ec 538700 nginx_1.26.3-3+deb13u6_armel.deb
Checksums-Sha256:
 b48ba8cf95273da51fff02b6a401951d1fcd39ce3bfdb54ef822ce9823e24066 38368 libnginx-mod-http-geoip-dbgsym_1.26.3-3+deb13u6_armel.deb
 4f78ac0f822ccad8ff06f2ef6871ae63ba29b17b9da186c2f37c4241636ab957 89152 libnginx-mod-http-geoip_1.26.3-3+deb13u6_armel.deb
 63f2d1e30d8e434405231aeeee9293d8cfae726161bf8d7a66cbf5c041c0f9de 46224 libnginx-mod-http-image-filter-dbgsym_1.26.3-3+deb13u6_armel.deb
 c8d9491434e3431821060bb1a074e252f0f16d6d0ba2526d50b0b3a74f2b8815 93148 libnginx-mod-http-image-filter_1.26.3-3+deb13u6_armel.deb
 f56198b926d647f5780842e43ced35c78b8fecfee58d898be4b5c786b61860e9 108352 libnginx-mod-http-perl-dbgsym_1.26.3-3+deb13u6_armel.deb
 e5583903c2cf2af4d229464f5a8ceb06d0be7f3c70f3a89368c7cb5a535e001e 98948 libnginx-mod-http-perl_1.26.3-3+deb13u6_armel.deb
 c12b20c7c6e5e8ca7a4b5493667d1fb8a241e03d0014a222ea934b444e29bc69 54440 libnginx-mod-http-xslt-filter-dbgsym_1.26.3-3+deb13u6_armel.deb
 64032aa4b5e954b8c539c08688a0e3c19400a53ca59322e5632dc5d10c59effb 90344 libnginx-mod-http-xslt-filter_1.26.3-3+deb13u6_armel.deb
 78704aedf3398dcbf6447f2ac23f92927747eee7e621fc34f8445024bc135e85 109772 libnginx-mod-mail-dbgsym_1.26.3-3+deb13u6_armel.deb
 dbeb6604ac88d8dccdeffc125b3f77d6ba0b4d29d72576b3ab0158569d431eeb 118128 libnginx-mod-mail_1.26.3-3+deb13u6_armel.deb
 1b6aeeb0bbf9b99f46d73cbb8d41b37df945d81e35b2d4025fdb94570277f776 188816 libnginx-mod-stream-dbgsym_1.26.3-3+deb13u6_armel.deb
 c905f64c63f598f1be4825f604fde3601bf4b1f5f23a0f96ba81b62ebb178a09 24544 libnginx-mod-stream-geoip-dbgsym_1.26.3-3+deb13u6_armel.deb
 f06af6810153450ae111b5e3ea1f512d2b156bf6757a2dc0626050c2791e86f3 88460 libnginx-mod-stream-geoip_1.26.3-3+deb13u6_armel.deb
 fcad379224f15366acee3b9e7ada872ec3dd61f32ab1fec0b8ff98d1cd72bb1c 142840 libnginx-mod-stream_1.26.3-3+deb13u6_armel.deb
 7b407407fb0e404b6244e3cf42574c02530d6bb3c3ed1a312c0de1487dbcd7ae 1320436 nginx-dbgsym_1.26.3-3+deb13u6_armel.deb
 b0723daee04c4e09ab6eabc870ca36eb9818623be6ca4333827ae3afaf2c6d9c 84488 nginx-extras_1.26.3-3+deb13u6_armel.deb
 e01a17c259447988630942141be292820fe2f011f378104cfa0fc8d9d4597890 13800 nginx_1.26.3-3+deb13u6_armel-buildd.buildinfo
 e8fc7fd9ae9f355321c3d8c3a76f5f77e019f2a41edb21ae833af3dfafa6c1c3 538700 nginx_1.26.3-3+deb13u6_armel.deb
Files:
 5acd6c88e052f5aada9ba78133060067 38368 debug optional libnginx-mod-http-geoip-dbgsym_1.26.3-3+deb13u6_armel.deb
 009602db43d2861bd6047f011532e4b1 89152 httpd optional libnginx-mod-http-geoip_1.26.3-3+deb13u6_armel.deb
 85e8e3e65d3242b15abccc0c777577cb 46224 debug optional libnginx-mod-http-image-filter-dbgsym_1.26.3-3+deb13u6_armel.deb
 91b68c792322c11ea0e6690dd3c39e5f 93148 httpd optional libnginx-mod-http-image-filter_1.26.3-3+deb13u6_armel.deb
 ba248dc27c466d41d8bd03782270b446 108352 debug optional libnginx-mod-http-perl-dbgsym_1.26.3-3+deb13u6_armel.deb
 b9a8537c1f3535a9b43c092141fc52a8 98948 httpd optional libnginx-mod-http-perl_1.26.3-3+deb13u6_armel.deb
 e0365d9fbce13eab63fb107238820682 54440 debug optional libnginx-mod-http-xslt-filter-dbgsym_1.26.3-3+deb13u6_armel.deb
 312e981e3c13b89a98a8e5eba609826e 90344 httpd optional libnginx-mod-http-xslt-filter_1.26.3-3+deb13u6_armel.deb
 10310690ed913881b3defb502f05ad0d 109772 debug optional libnginx-mod-mail-dbgsym_1.26.3-3+deb13u6_armel.deb
 d0db8fff80801a8032b28cc7bd4328c5 118128 httpd optional libnginx-mod-mail_1.26.3-3+deb13u6_armel.deb
 d950a63b8a4552b794572b16cc1cd129 188816 debug optional libnginx-mod-stream-dbgsym_1.26.3-3+deb13u6_armel.deb
 f52693f26aef1eb1a77ef004cbe09193 24544 debug optional libnginx-mod-stream-geoip-dbgsym_1.26.3-3+deb13u6_armel.deb
 30c5a9386921ae4fd97903dedb2c2108 88460 httpd optional libnginx-mod-stream-geoip_1.26.3-3+deb13u6_armel.deb
 95aaa21c07cd77a4908da435c4eac49b 142840 httpd optional libnginx-mod-stream_1.26.3-3+deb13u6_armel.deb
 928e84f355b90887a0d3707a2ff8ed48 1320436 debug optional nginx-dbgsym_1.26.3-3+deb13u6_armel.deb
 0f715ca4edb753a5a4589768a9d7068c 84488 httpd optional nginx-extras_1.26.3-3+deb13u6_armel.deb
 1527db20858192eef660bcb137951592 13800 httpd optional nginx_1.26.3-3+deb13u6_armel-buildd.buildinfo
 8b0ec9ab2623a2a70d818348a8846796 538700 httpd optional nginx_1.26.3-3+deb13u6_armel.deb

-----BEGIN PGP SIGNATURE-----
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=TfNu
-----END PGP SIGNATURE-----