Bugtraq mailing list archives
Re: Nginx ngx_http_close_connection function integer overflow
From: Maxim Konovalov <maxim.konovalov () gmail com>
Date: Mon, 29 Apr 2013 19:08:20 +0400 (MSK)
Hello, Recently a report appeared alleging an integer overflow vulnerability in nginx, claiming remote code execution impact. We've carefully investigated the issue, and cannot confirm the alleged vulnerability exists. Taking this opportunity to remind: if you think you've found a security issue in nginx - it's a good idea to report it to security-alert () nginx org, as listed at the nginx security advisories page here: http://nginx.org/en/security_advisories.html -- Maxim Konovalov
Current thread:
- Nginx ngx_http_close_connection function integer overflow safe3q (Apr 25)
- Re: Nginx ngx_http_close_connection function integer overflow Maxim Konovalov (Apr 29)
- Re: Nginx ngx_http_close_connection function integer overflow Maxim Konovalov (Apr 29)
- Re: Nginx ngx_http_close_connection function integer overflow Maxim Konovalov (Apr 29)