BugTraq
Nginx ngx_http_close_connection function integer overflow Apr 25 2013 06:52AM
safe3q gmail com (1 replies)
Re: Nginx ngx_http_close_connection function integer overflow Apr 25 2013 05:51PM
Maxim Konovalov (maxim konovalov gmail com) (1 replies)
Re: Nginx ngx_http_close_connection function integer overflow Apr 29 2013 03:08PM
Maxim Konovalov (maxim konovalov gmail com)
Hello,

Recently a report appeared alleging an integer overflow vulnerability
in nginx, claiming remote code execution impact. We've carefully
investigated the issue, and cannot confirm the alleged vulnerability
exists.

Taking this opportunity to remind: if you think you've found a
security issue in nginx - it's a good idea to report it to
security-alert (at) nginx (dot) org [email concealed], as listed at the nginx security advisories
page here:

http://nginx.org/en/security_advisories.html

--
Maxim Konovalov

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus