Re: Nginx ngx_http_close_connection function integer overflow

From: Maxim Konovalov <maxim.konovalov@gmail.com>
To: bugtraq@securityfocus.com
Cc:
Subject: Re: Nginx ngx_http_close_connection function integer overflow
Date:


Hello,

Recently a report appeared alleging an integer overflow vulnerability
in nginx, claiming remote code execution impact. We've carefully
investigated the issue, and cannot confirm the alleged vulnerability
exists.

Taking this opportunity to remind: if you think you've found a
security issue in nginx - it's a good idea to report it to
security-alert@nginx.org, as listed at the nginx security advisories
page here:

http://nginx.org/en/security_advisories.html

-- 
Maxim Konovalov





Copyright © 1995-2019 LinuxRocket.net. All rights reserved.