Re: Nginx ngx_http_close_connection function integer overflow
Hello,
Recently a report appeared alleging an integer overflow vulnerability
in nginx, claiming remote code execution impact. We've carefully
investigated the issue, and cannot confirm the alleged vulnerability
exists.
Taking this opportunity to remind: if you think you've found a
security issue in nginx - it's a good idea to report it to
security-alert@nginx.org, as listed at the nginx security advisories
page here:
http://nginx.org/en/security_advisories.html
--
Maxim Konovalov
討論串 (同標題文章)
完整討論串 (本文為第 3 之 3 篇):