CVE-2026-40898
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
5.3 / 10
Vulnerability Description
quic-go: HTTP/3 QPACK Trailer Expansion Memory Exhaustion
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
go
Product
github.com/quic-go/quic-go
External References
- https://github.com/quic-go/quic-go/security/advisories/GHSA-vvgj-x9jq-8cj9
- https://github.com/quic-go/quic-go/pull/5642
- https://github.com/quic-go/quic-go/commit/c56e8c79d1627cc1ed6005b421b4b0adadd83665
- https://github.com/advisories/GHSA-g754-hx8w-x2g6
- https://github.com/quic-go/quic-go/releases/tag/v0.59.1
- https://github.com/advisories/GHSA-vvgj-x9jq-8cj9
Discussion (0)
Add Comment
No comments yet. Be the first!