From 9a57a5bc9947dd73cbe060a0584599f694ef9c4d Mon Sep 17 00:00:00 2001
From: CoprDistGit <infra@openeuler.org>
Date: Tue, 19 May 2026 07:31:02 +0000
Subject: automatic import of nginx

---
 backport-CVE-2026-42945.patch | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 backport-CVE-2026-42945.patch

(limited to 'backport-CVE-2026-42945.patch')

diff --git a/backport-CVE-2026-42945.patch b/backport-CVE-2026-42945.patch
new file mode 100644
index 0000000..705d9ed
--- /dev/null
+++ b/backport-CVE-2026-42945.patch
@@ -0,0 +1,25 @@
+From: nginx security <security@nginx.org>
+Date: Wed May 14 2026
+Subject: [PATCH] fix: CVE-2026-42945 - Buffer overflow in ngx_http_rewrite_module
+Upstream-commit: https://nginx.org/download/nginx-1.30.1.tar.gz
+Signed-off-by: infra_team <zhaiwenjie1@huawei.com>
+
+---
+ src/http/ngx_http_script.c | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/src/http/ngx_http_script.c b/src/http/ngx_http_script.c
+--- a/src/http/ngx_http_script.c
++++ b/src/http/ngx_http_script.c
+@@ -1202,6 +1202,7 @@ ngx_http_script_regex_end_code(ngx_http_script_engine_t *e)
+
+     r = e->request;
+
++    e->is_args = 0;
+     e->quote = 0;
+
+     ngx_log_debug0(NGX_LOG_DEBUG_HTTP, r->connection->log, 0,
+                    "http script regex end");
+
+     if (code->redirect) {
+--
-- 
cgit v1.2.3