Receiving QUIC frames containing a frame with unknown frame type could lead to a panic. Unfortunately this is issue was not found by our fuzzing infrastructure.
Thanks to the QUIC Tester research group for reporting this issue.
quinn-udp 0.3.2
This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.
quinn-udp
(5 total, 3 outdated, 1 possibly insecure)
Crate | Required | Latest | Status |
---|---|---|---|
libc | ^0.2.69 | 0.2.153 | up to date |
quinn-proto ⚠️ | ^0.9 | 0.10.6 | out of date |
socket2 | ^0.4 | 0.5.6 | out of date |
tracing | ^0.1.10 | 0.1.40 | up to date |
windows-sys | ^0.42.0 | 0.52.0 | out of date |
quinn-proto
: Denial of service in Quinn serversReceiving QUIC frames containing a frame with unknown frame type could lead to a panic. Unfortunately this is issue was not found by our fuzzing infrastructure.
Thanks to the QUIC Tester research group for reporting this issue.