This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate h3-quinn

Dependencies

(6 total, 3 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 bytes^11.6.0up to date
 futures^0.3.270.3.30up to date
 h3^0.0.20.0.5out of date
 quinn^0.100.11.1out of date
 quinn-proto ⚠️^0.100.11.2out of date
 tokio-util^0.7.70.7.11up to date

Security Vulnerabilities

quinn-proto: Denial of service in Quinn servers

RUSTSEC-2023-0063

Receiving QUIC frames containing a frame with unknown frame type could lead to a panic. Unfortunately this is issue was not found by our fuzzing infrastructure.

Thanks to the QUIC Tester research group for reporting this issue.