CNNVD-202508-667 Information
Aug 07, 2025
cve
CNNVD ID
CNNVD-202508-667
Related CVE
- CNNVD Published: 2025-08-07
Description (Chinese)
quiche是Cloudflare开源的一个 IETF 指定的 QUIC 传输协议和 HTTP/3 的实现。 quiche 0.15.0至0.24.5之前版本存在安全漏洞,该漏洞源于发送包含RETIRE_CONNECTION_ID帧的数据包时可能导致无限循环。
Description (English)
quiche is the realization of a specified IETF QUIC transfer protocol and HTTP/3 from the Open Source of Cloudflare. quiche 0.15.0 to 0.24.5 contains a security loophole, which stems from the fact that sending data packages containing RETIRE CONNECTION ID frames may lead to an unlimited cycle.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Cloudflare
Published
2025-08-07
Last Modified
2026-02-24
References
https://github.com/cloudflare/quiche/security/advisories/GHSA-m3hh-f9gh-74c2
Patch
https://docs.quic.tech/quiche/
Share on: