Re: Nginx ngx_http_close_connection function integer overflow

[Maxim Konovalov <maxim.konovalov () gmail com>]

Hello,

Recently a report appeared alleging an integer overflow vulnerability
in nginx, claiming remote code execution impact. We've carefully
investigated the issue, and cannot confirm the alleged vulnerability
exists.

Taking this opportunity to remind: if you think you've found a
security issue in nginx - it's a good idea to report it to
security-alert () nginx org, as listed at the nginx security advisories
page here:

http://nginx.org/en/security_advisories.html

-- 
Maxim Konovalov