automatic import of nginxopeneuler24.03_LTS_SP2 openeuler22.03_LTS_SP2

author: CoprDistGit <infra@openeuler.org> 2026-05-19 07:31:02 +0000
committer: CoprDistGit <infra@openeuler.org> 2026-05-19 07:31:02 +0000
commit: 9a57a5bc9947dd73cbe060a0584599f694ef9c4d (patch)
tree: ca517e733b8893655752783e36bd05e7b9dafcaa /backport-CVE-2026-42945.patch
parent: 84c38e44b89abd508b2c386dc7e6c13f30ec8cc8 (diff)
1 files changed, 25 insertions, 0 deletions
diff --git a/backport-CVE-2026-42945.patch b/backport-CVE-2026-42945.patch
new file mode 100644
index 0000000..705d9ed
--- /dev/null
+++ b/backport-CVE-2026-42945.patch
@@ -0,0 +1,25 @@
+From: nginx security <security@nginx.org>
+Date: Wed May 14 2026
+Subject: [PATCH] fix: CVE-2026-42945 - Buffer overflow in ngx_http_rewrite_module
+Upstream-commit: https://nginx.org/download/nginx-1.30.1.tar.gz
+Signed-off-by: infra_team <zhaiwenjie1@huawei.com>
+
+---
+ src/http/ngx_http_script.c | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/src/http/ngx_http_script.c b/src/http/ngx_http_script.c
+--- a/src/http/ngx_http_script.c
++++ b/src/http/ngx_http_script.c
+@@ -1202,6 +1202,7 @@ ngx_http_script_regex_end_code(ngx_http_script_engine_t *e)
+
+     r = e->request;
+
++    e->is_args = 0;
+     e->quote = 0;
+
+     ngx_log_debug0(NGX_LOG_DEBUG_HTTP, r->connection->log, 0,
+                    "http script regex end");
+
+     if (code->redirect) {
+--
author	CoprDistGit <infra@openeuler.org>	2026-05-19 07:31:02 +0000
committer	CoprDistGit <infra@openeuler.org>	2026-05-19 07:31:02 +0000
commit	9a57a5bc9947dd73cbe060a0584599f694ef9c4d (patch)
tree	ca517e733b8893655752783e36bd05e7b9dafcaa /backport-CVE-2026-42945.patch
parent	84c38e44b89abd508b2c386dc7e6c13f30ec8cc8 (diff)