Home page logo

bugtraq logo Bugtraq mailing list archives

Re: Nginx ngx_http_close_connection function integer overflow
From: Maxim Konovalov <maxim.konovalov () gmail com>
Date: Mon, 29 Apr 2013 19:08:20 +0400 (MSK)


Recently a report appeared alleging an integer overflow vulnerability
in nginx, claiming remote code execution impact. We've carefully
investigated the issue, and cannot confirm the alleged vulnerability

Taking this opportunity to remind: if you think you've found a
security issue in nginx - it's a good idea to report it to
security-alert () nginx org, as listed at the nginx security advisories
page here:


Maxim Konovalov

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]