VYPR

crates.io package

tonic

pkg:cargo/tonic

Vulnerabilities (1)

  • CVE-2024-47609MedOct 1, 2024
    affected >= 0.12.2, < 0.12.3fixed 0.12.3

    Tonic is a native gRPC client & server implementation with async/await support. When using tonic::transport::Server there is a remote DoS attack that can cause the server to exit cleanly on accepting a TCP/TLS stream. This can be triggered by causing the accept call to error out