# Security update for nginx

Announcement ID: SUSE-SU-2025:02542-1  
Release Date: 2025-07-29T08:58:38Z  
Rating: moderate  
References:

  * bsc#1246090

  
Affected Products:

  * openSUSE Leap 15.3

  
  
An update that has one security fix can now be installed.

## Description:

This update for nginx fixes the following issues:

Security hardening: \- Drop root priviledges while running logrotatei.
(bsc#1246090)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * openSUSE Leap 15.3  
    zypper in -t patch SUSE-2025-2542=1

## Package List:

  * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586)
    * nginx-1.19.8-150300.3.15.1
    * nginx-debugsource-1.19.8-150300.3.15.1
    * nginx-debuginfo-1.19.8-150300.3.15.1
  * openSUSE Leap 15.3 (noarch)
    * nginx-source-1.19.8-150300.3.15.1
    * vim-plugin-nginx-1.19.8-150300.3.15.1

## References:

  * https://bugzilla.suse.com/show_bug.cgi?id=1246090