Secunia reports in advisory SA3675 about a buffer underflow vulnerability in the function ngx_http_parse_complex_uri() of the nginx webserver and rates it as highly critical. Impacts may be a DoS attack or remote system access.
Changelogs were published for nginx 0.7.62, nginx 0.6.39 and nginx 0.5.38. We highly recommend that you upgrade to the latest version of nginx. ■