qh3 is vulnerable to Denial of Service (DoS)
53
Medium Risk
The Rust QUIC header protection code in qh3 slices a sample of fixed length from an incoming packet without first verifying the packet is long enough. When a corrupted or truncated datagram is fed into the QUIC state machine, the out-of-bounds slice raises an unhandled panic that surfaces as an unexpected crash instead of a graceful error. A remote peer can trigger this by sending a short/malformed packet, disrupting availability of the QUIC/HTTP3 endpoint. The fix adds an explicit length check in src/hpk.rs and returns a CryptoError instead of crashing.
You are affected if you are using a version that falls within the vulnerable range.
qh3 is vulnerable to Denial of Service (DoS) in versions 1.4.5 - 1.7.3.
Upgrade the qh3 library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant