High severity7.5NVD Advisory· Published Sep 21, 2023· Updated Jun 17, 2026
CVE-2023-42805
CVE-2023-42805
Description
quinn-proto is a state machine for the QUIC transport protocol. Prior to versions 0.9.5 and 0.10.5, receiving unknown QUIC frames in a QUIC packet could result in a panic. The problem has been fixed in 0.9.5 and 0.10.5 maintenance releases.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
quinn-protocrates.io | < 0.9.5 | 0.9.5 |
Affected products
2Patches
Vulnerability mechanics
References
7- github.com/quinn-rs/quinn/pull/1667nvdIssue TrackingPatchWEB
- github.com/quinn-rs/quinn/pull/1668nvdIssue TrackingPatchWEB
- github.com/advisories/GHSA-q8wc-j5m9-27w3ghsaADVISORY
- github.com/quinn-rs/quinn/security/advisories/GHSA-q8wc-j5m9-27w3nvdVendor AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2023-42805ghsaADVISORY
- github.com/quinn-rs/quinn/pull/1669nvdIssue TrackingWEB
- rustsec.org/advisories/RUSTSEC-2023-0063.htmlghsaWEB
News mentions
0No linked articles in our index yet.