{"id":"MGASA-2025-0245","summary":"Updated nginx package fixes security vulnerability","details":"It was discovered that nginx contains a security issue in the\nngx_mail_smtp_module which might allow an attacker to cause buffer\nover-read potentially resulting in sensitive information leak in a HTTP\nrequest to the authentication server (CVE-2025-53859).\n","modified":"2026-02-04T04:20:49.288106Z","published":"2025-10-22T20:07:31Z","related":["CVE-2025-53859"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2025-0245.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=34585"},{"type":"REPORT","url":"https://www.openwall.com/lists/oss-security/2025/08/13/5"}],"affected":[{"package":{"name":"nginx","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/nginx?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.26.3-1.1.mga9"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2025-0245.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}