VYPR
Unrated severityOSV Advisory· Published Jan 19, 2026· Updated Jan 20, 2026

Quicly has assertion failures

CVE-2025-61684

Description

Quicly, an IETF QUIC protocol implementation, is susceptible to a denial-of-service attack prior to commit d9d3df6a8530a102b57d840e39b0311ce5c9e14e. A remote attacker can exploit these bugs to trigger an assertion failure that crashes process using Quicly. Commit d9d3df6a8530a102b57d840e39b0311ce5c9e14e fixes the issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • H2o/QuiclyOSV2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: < commit d9d3df6a8530a102b57d840e39b0311ce5c9e14e

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.