4 matches found
quiche vulnerable to unbounded storage of information related to connection ID retirement
Impact Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers IDs; see RFC 9000 Section 5.1. Endpoints declare the...
CVE-2024-1410
Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers IDs; see RFC 9000 Section 5.1...
Cloudflare quiche resource management error vulnerability
quiche is a Cloudflare open source implementation of the IETF-designated QUIC transport protocol and HTTP/3. A resource management error vulnerability exists in Cloudflare quiche prior to 0.19.1, version 0.20.0, which stems from vulnerability to unlimited storage of information related to...
PT-2023-32560 · Quiche · Quiche
Name of the Vulnerable Software and Affected Versions: quiche versions 0.15.0 through 0.19.0 Description: The issue is related to unbounded queuing of path validation messages, which could lead to excessive resource consumption. QUIC path validation requires that the recipient of a PATH CHALLENGE...