about alleged security issue

Maxim Dounin mdounin at mdounin.ru
Mon Apr 29 12:31:55 UTC 2013


Hello!

Recently a report appeared alleging an integer overflow
vulnerability in nginx, claiming remote code execution impact.
We've carefully investigated the issue, and cannot confirm the
alleged vulnerability exists.

Taking this opportunity to remind: if you think you've found
a security issue in nginx - it's a good idea to report it to
security-alert at nginx.org, as listed at the nginx security
advisories page here:

http://nginx.org/en/security_advisories.html

-- 
Maxim Dounin
http://nginx.org/en/donation.html



More information about the nginx mailing list