Kua tukuna ngā papaki Nginx 1.31.1 me 1.30.2, e whakatika ana i tētahi ngoikoretanga nui (CVE-2026-9256) e āhei ai te whakahaere waehere mamao me ngā mana o tētahi tukanga kaimahi Nginx mā te tuku i tētahi tono HTTP kua hangaia mōna. Kua whakaaturia e ngā kairangahau i kitea te take he whakamahinga mahi, ka whakaputaina me tētahi whakaahuatanga katoa i roto i ngā rā 30 i muri i te tukunga o te papaki. Ko te ingoa waehere o te ngoikoretanga ko nginx-poolslip. Ka puta te take mai i te putanga Nginx 0.1.17. I te wā e tuhi ana, kāore anō kia whakaputaina he papaki mō Angie me Freenginx.
Pērā i tētahi take ōrite i whakatikahia i te wiki kua taha ake nei, ko tēnei ngoikoretanga hou i puta mai i te waipuke o te arai i roto i te kōwae ngx_http_rewrite_module, ā, ka kitea i roto i ngā whirihoranga me ētahi kīanga auau i roto i te tohutohu "rewrite". I tēnei wā, ka pā te ngoikoretanga ki ngā pūnaha me ngā tauira whakakapinga taupatupatu (ngā parenga i roto i ngā parenga) i roto i te kīanga tuhituhi anō, pērā i te "^/((.*))$" me te "^/(test([123]))$" rānei, me te whakamahi i ngā whakakapinga maha kāore i te ingoatia i roto i te aho whakakapinga (hei tauira, "$1$2").
He mea nui anō hoki te tukunga o te njs 0.9.9, he kōwae hei whakauru i ngā kaiwhakamāori JavaScript ki te tūmau HTTP nginx. Ka whakatikahia e te putanga hou tētahi ngoikoretanga (CVE-2026-8711) kua noho mai i te njs 0.9.4. Nā te waipuke o te arai i puta ai te raruraru, ā, ka kitea i roto i ngā whirihoranga me te tohutohu js_fetch_proxy, kei roto nei ngā taurangi nginx me ngā raraunga mai i te tono a te kiritaki (pēnei i te $http_*, $arg_*, me te $cookie_*), me te whakamahi i tētahi kaiwhakahaere tauwāhi e karanga ana i te mahi ngx.fetch(). Ka taea te whakamahi i te ngoikoretanga hei whakahaere i te waehere me ngā mana o te tukanga kaimahi nginx mā te tuku i tētahi tono HTTP kua hangaia mō tētahi kaupapa motuhake.
Source: opennet.ru
