Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers

📡 Tech & Science

Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers

Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers

A single wrong variable on one line in XQUIC, Alibaba's QUIC and HTTP/3 library, lets any remote client crash the server with a short burst of completely legal traffic. There is no patch. FoxIO researcher Sébastien Féry disclosed the flaw on July 8 and nicknamed it XRING. He says it needs no login and no malformed packets: about 260 bytes of ordinary QPACK traffic takes the server

📖 Cet article provient d'une source externe.

🔗 Lire l'article complet sur la source →

67 mots extraits · Source originale


🔥 OFFRE PARTENAIRE

Upgraded Smart Visual Ear Wax Cleaner With Camera 800W HD Endoscope Multi-Functional Visual Ear Cleaning Tool Includes Storage

🔥 Upgraded Smart Visual Ear Wax Cleaner With Camera 800W HD Endoscope Multi-Functional Visual Ear Cleaning Tool Includes Storage - Une offre exceptionnelle à ne pas manquer ! Cliquez pour découvrir.
✅ Consultez les photos supplémentaires.

✅ Découvrez toutes les caractéristiques.

✅ Vérifiez la disponibilité actuelle.

✅ Consultez les avis des acheteurs.

Posts les plus consultés de ce blog

Ce smartphone présente le meilleur rapport qualité / prix de notre comparatif

Unified Zero-Shot Time Series Forecasting: A Darts Foundation

AI Is Here to Stay. The Real Challenge Is Operating It Securely

Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak Data

Can AI Draw Science? A Benchmark for Evaluating Scientific Figure Generation by Text-to-Image and Multimodal Models

À près de 3700 euros, ce vidéoprojecteur futuriste cache quelques défauts agaçants

Comment supprimer son historique Canal ?

Language to rewards for robotic skill synthesis

How AI Is Transforming DevOps and Cloud Engineering

Ce téléviseur Samsung se transforme en tableau et son prix chute de 200 €