VYPR

Hpack

by Python (programming language)

pypi: hpack

CVEs (1)

  • CVE-2016-6581HigJan 10, 2017
    risk 0.49cvss 7.5epss 0.02

    A HTTP/2 implementation built using any version of the Python HPACK library between v1.0.0 and v2.2.0 could be targeted for a denial of service attack, specifically a so-called "HPACK Bomb" attack. This attack occurs when an attacker inserts a header field that is exactly the…