VYPR

crates.io package

loona-hpack

pkg:cargo/loona-hpack

Vulnerabilities (1)

  • CVE-2024-51502MedNov 4, 2024
    affected < 0.4.3fixed 0.4.3

    loona is an experimental, HTTP/1.1 and HTTP/2 implementation in Rust on top of io-uring. `loona-hpack` suffers from the same vulnerability as the original `hpack` as documented in issue #11. All users who try to decode untrusted input using the Decoder are vulnerable to this expl