| Name | DSA-6278-1 |
| Description | nginx - security update |
| Source | Debian |
| References | CVE-2026-40701, CVE-2026-42934, CVE-2026-42945, CVE-2026-42946 |
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|---|---|---|
| nginx (PTS) | bookworm | 1.22.1-9+deb12u6 | vulnerable |
| bookworm (security) | 1.22.1-9+deb12u7 | fixed | |
| trixie | 1.26.3-3+deb13u4 | vulnerable | |
| trixie (security) | 1.26.3-3+deb13u5 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| nginx | source | bookworm | 1.22.1-9+deb12u7 | |||
| nginx | source | trixie | 1.26.3-3+deb13u5 |