nginx security advisory (CVE-2017-7529)

c0nw0nk nginx-forum at
Tue Jul 11 21:45:15 UTC 2017

Couldn't you use 

max_ranges 0;

To disable byte range support completely.

Also won't setting the value of ranges to max_ranges 1; break pseudo
streaming in HTML5 video apps etc. ?

Posted at Nginx Forum:,275424,275437#msg-275437

More information about the nginx mailing list