Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2013-2028

The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based buffer overflow.

See the

CVE page on Mitre.org for more details.

References

MLIST: [nginx-announce] 20130...
MISC: http://nginx.org/downl...
MISC: http://packetstormsecu...
MISC: http://www.vnsecurity....
MISC: https://github.com/rap...
OSVDB: 93037
GENTOO: GLSA-201310-04
SECUNIA: 55181
FEDORA: FEDORA-2013-7560
BID: 59699

Launchpad.net

CVE 2013-2028

Related bugs

References