3 matches found
CVE-2022-30592
CVE-2022-30592 affects LiteSpeed QUIC (LSQUIC) before 3.1.0 due to a flaw in liblsquic/lsquic_qenc_hdl.c that mishandles MAX_TABLE_CAPACITY. The issue is described across multiple sources as a vulnerability in the QUIC implementation, with affected versions prior to 3.1.0. The exact exploitation ...
CVE-2024-25678
Summary: CVE-2024-25678 affects the LiteSpeed QUIC (LSQUIC) Library prior to 4.0.4, due to mishandled DCID validation. The issue is tied to the authentication/DCID handling behavior in LSQUIC. Affected software: LiteSpeed QUIC (LSQUIC) Library versions before 4.0.4. Root cause (as stated): Mishan...
CVE-2025-54939
CVE-2025-54939 affects the LiteSpeed QUIC (LSQUIC) Library prior to 4.3.1, where a memory leak in the lsquic_engine_packet_in path can cause linear memory growth and potential DoS. The vulnerability is triggered by mis-handling coalesced QUIC Initial packets before a handshake, leading to memory ...