Summary
Netty HTTP/3 QPACK Blocked Streams Memory Exhaustion
References
Related vulnerabilities
All Supply chain →- MEDIUMGHSA-WJQC-6W8F-H24C
pypdf: Manipulated XMP metadata streams can exhaust RAM
- MEDIUMGHSA-563Q-J3CM-6JXM
Netty susceptible to HTTP/2 Reset Attack with different on-the-wire signature
- HIGHGHSA-5W86-C3RQ-VJJ7
Netty: Unbounded pre-allocation in RedisArrayAggregator from RESP array length
- MEDIUMGHSA-6PH5-FWW6-VFWV
NIOExtras: NIOHTTPRequestDecompressor ratio limit bypass via inflated Content-Length
- HIGHGHSA-RJ37-6J9X-74Q6
SwiftNIO NIOHTTP1: HTTPDecoder accepts unbounded HTTP/1 header blocks, enabling remote DoS
- MEDIUMGHSA-HHPQ-7WG4-36JM
CakePHP Authentication: Open redirect weakness via backslash bypass