How to reproduce issue CVE-2016-4450?
Oleksandr V. Typlyns'kyi
wangsamp at gmail.com
Fri Jun 3 07:32:15 UTC 2016
Today Jun 3, 2016 at 06:55 ?? wrote:
> I am working on the fixing of issue CVE-2016-4450, it seems that if the request body is neither saved in the memory nor in file, it might crash when save the request body to the temp file.
> Could you instruct me what kind of request body can trigger this issue? I want to reproduce it, and evaluate the whether upgrade our nginx server.
Chunked WebDAV PUT: https://trac.nginx.org/nginx/ticket/981
More information about the nginx