Opened 6 years ago

Closed 6 years ago

#341 closed defect (invalid)

in overflow error in ngx_http_close_connection

Reported by: c.kworr@… Owned by:
Priority: critical Milestone:
Component: nginx-core Version: 1.3.x
Keywords: Cc:
uname -a:
nginx -V: nginx version: nginx/1.2.8 TLS SNI support enabled configure arguments: --prefix=/usr/local/etc/nginx --with-cc-opt='-I /usr/local/include' --with-ld-opt='-L /usr/local/lib' --conf-path=/usr/local/etc/nginx/nginx.conf --sbin-path=/usr/local/sbin/nginx --pid-path=/var/run/nginx.pid --error-log-path=/var/log/nginx-error.log --user=www --group=www --with-debug --with-file-aio --with-ipv6 --http-client-body-temp-path=/var/tmp/nginx/client_body_temp --http-fastcgi-temp-path=/var/tmp/nginx/fastcgi_temp --http-proxy-temp-path=/var/tmp/nginx/proxy_temp --http-scgi-temp-path=/var/tmp/nginx/scgi_temp --http-uwsgi-temp-path=/var/tmp/nginx/uwsgi_temp --http-log-path=/var/log/nginx-access.log --with-http_dav_module --add-module=/tmp/ports/usr/ports/www/nginx/work/arut-nginx-dav-ext-module-0e07a3e --with-http_realip_module --with-http_stub_status_module --with-pcre --with-http_ssl_module

Description

There's new security issue available: http://www.securityfocus.com/archive/1/526439

Maybe at least some official announcement?

Change History (1)

comment:1 Changed 6 years ago by maxim

  • Resolution set to invalid
  • Status changed from new to closed

We are aware of this issue and working on it. We'll release an official announce when get more information about the problem and its impact.

I close this ticket as this is not a problem report. Please use nginx mailing lists for such requests: http://nginx.org/en/support.html

Note: See TracTickets for help on using tickets.