[Bug 2112638] [NEW] Latest patched version of nginx unavailable in 24.04 repos

B. Daqui Fri, 06 Jun 2025 04:30:41 -0700

Public bug reported:

According to the security page for CVE-2025-23419
(https://ubuntu.com/security/CVE-2025-23419) there already is a new
package available for download (1.24.0-2ubuntu7.3 -> 1.26.0-2ubuntu3.2)
that patches that vulnerability.


It can however not be found in the repos:

```
apt-get update
...
apt-get upgrade nginx
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
nginx is already the newest version (1.24.0-2ubuntu7.3).
```

```
apt-cache policy nginx
nginx:
  Installed: 1.24.0-2ubuntu7.3
  Candidate: 1.24.0-2ubuntu7.3
  Version table:
 *** 1.24.0-2ubuntu7.3 500
        500 http://archive.ubuntu.com/ubuntu noble-updates/main amd64 Packages
        500 http://security.ubuntu.com/ubuntu noble-security/main amd64 Packages
        100 /var/lib/dpkg/status
     1.24.0-2ubuntu7 500
        500 http://archive.ubuntu.com/ubuntu noble/main amd64 Packages
```

Or on the Launchpad page for the package
(https://launchpad.net/ubuntu/noble/+package/nginx).

Could it be the package is not ready, in fact?

** Affects: nginx (Ubuntu)
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2112638

Title:
  Latest patched version of nginx unavailable in 24.04 repos

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/2112638/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 2112638] [NEW] Latest patched version of nginx unavailable in 24.04 repos

Reply via email to