[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Nginx ngx_http_close_connection function integer overflow


Recently a report appeared alleging an integer overflow vulnerability
in nginx, claiming remote code execution impact. We've carefully
investigated the issue, and cannot confirm the alleged vulnerability

Taking this opportunity to remind: if you think you've found a
security issue in nginx - it's a good idea to report it to
security-alert@xxxxxxxxx, as listed at the nginx security advisories
page here:


Maxim Konovalov