Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers
📡 Tech & Science
Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers

A single wrong variable on one line in XQUIC, Alibaba's QUIC and HTTP/3 library, lets any remote client crash the server with a short burst of completely legal traffic. There is no patch. FoxIO researcher Sébastien Féry disclosed the flaw on July 8 and nicknamed it XRING. He says it needs no login and no malformed packets: about 260 bytes of ordinary QPACK traffic takes the server
📖 Cet article provient d'une source externe.
🔗 Lire l'article complet sur la source →67 mots extraits · Source originale
🔥 OFFRE PARTENAIRE
Upgraded Smart Visual Ear Wax Cleaner With Camera 800W HD Endoscope Multi-Functional Visual Ear Cleaning Tool Includes Storage
🔥 Upgraded Smart Visual Ear Wax Cleaner With Camera 800W HD Endoscope Multi-Functional Visual Ear Cleaning Tool Includes Storage - Une offre exceptionnelle à ne pas manquer ! Cliquez pour découvrir.
✅ Consultez les photos supplémentaires.
✅ Découvrez toutes les caractéristiques.
✅ Vérifiez la disponibilité actuelle.
✅ Consultez les avis des acheteurs.
✅ Découvrez toutes les caractéristiques.
✅ Vérifiez la disponibilité actuelle.
✅ Consultez les avis des acheteurs.