Open bentoi opened 1 year ago
See https://github.com/dotnet/runtime/issues/30600
I believe of these apply to Slic and in particular the PING flood attack (https://github.com/advisories/GHSA-hgr8-6h9x-f7q9) if we keep the PONG frame. See also https://github.com/icerpc/icerpc-csharp/issues/3273
I'm targeting this for 0.2, please change if you prefer to look into this for 0.1.
See also https://www.bleepingcomputer.com/news/security/new-http-2-flaws-expose-unpatched-web-servers-to-dos-attacks/
bentoi
commented
1 year ago bentoi
commented
1 year ago
See https://github.com/dotnet/runtime/issues/30600
I believe of these apply to Slic and in particular the PING flood attack (https://github.com/advisories/GHSA-hgr8-6h9x-f7q9) if we keep the PONG frame. See also https://github.com/icerpc/icerpc-csharp/issues/3273
I'm targeting this for 0.2, please change if you prefer to look into this for 0.1.