Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: Nginx ngx_http_close_connection function integer overflow
From: Maxim Konovalov <maxim.konovalov () gmail com>
Date: Mon, 29 Apr 2013 19:08:20 +0400 (MSK)

Hello,

Recently a report appeared alleging an integer overflow vulnerability
in nginx, claiming remote code execution impact. We've carefully
investigated the issue, and cannot confirm the alleged vulnerability
exists.

Taking this opportunity to remind: if you think you've found a
security issue in nginx - it's a good idea to report it to
security-alert () nginx org, as listed at the nginx security advisories
page here:

http://nginx.org/en/security_advisories.html

-- 
Maxim Konovalov


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault