Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-30592: Release 3.1.0 · litespeedtech/lsquic@a74702c

liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1.0 mishandles MAX_TABLE_CAPACITY.

CVE
Open in Source
#acer

Permalink

Showing with 294 additions and 287 deletions.

  1. +1 −1 APIs.txt
  2. +11 −0 CHANGELOG
  3. +1 −9 CMakeLists.txt
  4. +1 −1 CONTRIBUTORS.txt
  5. +1 −1 EXAMPLES.txt
  6. +1 −1 LICENSE
  7. +1 −1 bin/CMakeLists.txt
  8. +1 −1 bin/duck_client.c
  9. +1 −1 bin/duck_server.c
  10. +1 −1 bin/echo_client.c
  11. +1 −1 bin/echo_server.c
  12. +1 −1 bin/http_client.c
  13. +1 −1 bin/http_server.c
  14. +1 −1 bin/md5_client.c
  15. +1 −1 bin/md5_server.c
  16. +1 −1 bin/perf_client.c
  17. +1 −1 bin/perf_server.c
  18. +1 −1 bin/prog.c
  19. +1 −1 bin/prog.h
  20. +1 −1 bin/test_cert.c
  21. +1 −1 bin/test_cert.h
  22. +1 −1 bin/test_common.c
  23. +1 −1 bin/test_common.h
  24. +3 −3 docs/conf.py
  25. +3 −3 include/lsquic.h
  26. +1 −1 include/lsquic_types.h
  27. +1 −1 include/lsxpack_header.h
  28. +1 −1 src/CMakeLists.txt
  29. +2 −1 src/liblsquic/CMakeLists.txt
  30. +1 −1 src/liblsquic/common_cert_set_2.c
  31. +1 −1 src/liblsquic/common_cert_set_2a.inc
  32. +1 −1 src/liblsquic/common_cert_set_2b.inc
  33. +1 −1 src/liblsquic/common_cert_set_3.c
  34. +1 −1 src/liblsquic/common_cert_set_3a.inc
  35. +1 −1 src/liblsquic/common_cert_set_3b.inc
  36. +1 −1 src/liblsquic/fiu-local.h
  37. +1 −1 src/liblsquic/ls-sfparser.c
  38. +1 −1 src/liblsquic/ls-sfparser.h
  39. +1 −1 src/liblsquic/lsquic_adaptive_cc.c
  40. +1 −1 src/liblsquic/lsquic_adaptive_cc.h
  41. +1 −1 src/liblsquic/lsquic_alarmset.c
  42. +1 −1 src/liblsquic/lsquic_alarmset.h
  43. +1 −1 src/liblsquic/lsquic_arr.c
  44. +1 −1 src/liblsquic/lsquic_arr.h
  45. +1 −1 src/liblsquic/lsquic_attq.c
  46. +1 −1 src/liblsquic/lsquic_attq.h
  47. +1 −1 src/liblsquic/lsquic_bbr.c
  48. +1 −1 src/liblsquic/lsquic_bbr.h
  49. +1 −1 src/liblsquic/lsquic_bw_sampler.c
  50. +1 −1 src/liblsquic/lsquic_bw_sampler.h
  51. +1 −1 src/liblsquic/lsquic_byteswap.h
  52. +1 −1 src/liblsquic/lsquic_cfcw.c
  53. +1 −1 src/liblsquic/lsquic_chsk_stream.c
  54. +1 −1 src/liblsquic/lsquic_chsk_stream.h
  55. +1 −1 src/liblsquic/lsquic_cong_ctl.h
  56. +1 −1 src/liblsquic/lsquic_conn.c
  57. +1 −1 src/liblsquic/lsquic_conn.h
  58. +1 −1 src/liblsquic/lsquic_conn_flow.h
  59. +1 −1 src/liblsquic/lsquic_conn_public.h
  60. +1 −1 src/liblsquic/lsquic_crand.c
  61. +1 −1 src/liblsquic/lsquic_crand.h
  62. +1 −1 src/liblsquic/lsquic_crt_compress.c
  63. +1 −1 src/liblsquic/lsquic_crt_compress.h
  64. +1 −1 src/liblsquic/lsquic_crypto.c
  65. +1 −1 src/liblsquic/lsquic_crypto.h
  66. +1 −1 src/liblsquic/lsquic_cubic.c
  67. +1 −1 src/liblsquic/lsquic_cubic.h
  68. +1 −1 src/liblsquic/lsquic_data_in_if.h
  69. +1 −1 src/liblsquic/lsquic_di_error.c
  70. +1 −1 src/liblsquic/lsquic_di_hash.c
  71. +1 −1 src/liblsquic/lsquic_di_nocopy.c
  72. +1 −1 src/liblsquic/lsquic_enc_sess.h
  73. +1 −1 src/liblsquic/lsquic_enc_sess_common.c
  74. +1 −1 src/liblsquic/lsquic_enc_sess_ietf.c
  75. +1 −1 src/liblsquic/lsquic_eng_hist.c
  76. +1 −1 src/liblsquic/lsquic_eng_hist.h
  77. +1 −1 src/liblsquic/lsquic_engine.c
  78. +1 −1 src/liblsquic/lsquic_engine_public.h
  79. +1 −1 src/liblsquic/lsquic_ev_log.c
  80. +1 −1 src/liblsquic/lsquic_ev_log.h
  81. +1 −1 src/liblsquic/lsquic_frab_list.c
  82. +1 −1 src/liblsquic/lsquic_frab_list.h
  83. +1 −1 src/liblsquic/lsquic_frame_common.c
  84. +1 −1 src/liblsquic/lsquic_frame_common.h
  85. +1 −1 src/liblsquic/lsquic_frame_reader.c
  86. +1 −1 src/liblsquic/lsquic_frame_reader.h
  87. +1 −1 src/liblsquic/lsquic_frame_writer.c
  88. +1 −1 src/liblsquic/lsquic_frame_writer.h
  89. +1 −1 src/liblsquic/lsquic_full_conn.c
  90. +1 −1 src/liblsquic/lsquic_full_conn.h
  91. +1 −1 src/liblsquic/lsquic_full_conn_ietf.c
  92. +1 −1 src/liblsquic/lsquic_global.c
  93. +1 −1 src/liblsquic/lsquic_handshake.c
  94. +1 −1 src/liblsquic/lsquic_handshake.h
  95. +1 −1 src/liblsquic/lsquic_hash.c
  96. +1 −1 src/liblsquic/lsquic_hash.h
  97. +1 −1 src/liblsquic/lsquic_hcsi_reader.c
  98. +1 −1 src/liblsquic/lsquic_hcsi_reader.h
  99. +1 −1 src/liblsquic/lsquic_hcso_writer.c
  100. +1 −1 src/liblsquic/lsquic_hcso_writer.h
  101. +1 −1 src/liblsquic/lsquic_headers.h
  102. +1 −1 src/liblsquic/lsquic_headers_stream.c
  103. +1 −1 src/liblsquic/lsquic_headers_stream.h
  104. +1 −1 src/liblsquic/lsquic_hkdf.c
  105. +1 −1 src/liblsquic/lsquic_hkdf.h
  106. +1 −1 src/liblsquic/lsquic_hpi.c
  107. +1 −1 src/liblsquic/lsquic_hpi.h
  108. +1 −1 src/liblsquic/lsquic_hq.h
  109. +1 −1 src/liblsquic/lsquic_hspack_valid.c
  110. +1 −1 src/liblsquic/lsquic_http.c
  111. +1 −1 src/liblsquic/lsquic_http1x_if.c
  112. +1 −1 src/liblsquic/lsquic_http1x_if.h
  113. +1 −1 src/liblsquic/lsquic_ietf.h
  114. +1 −1 src/liblsquic/lsquic_int_types.h
  115. +1 −1 src/liblsquic/lsquic_logger.c
  116. +1 −1 src/liblsquic/lsquic_logger.h
  117. +1 −1 src/liblsquic/lsquic_malo.c
  118. +1 −1 src/liblsquic/lsquic_malo.h
  119. +1 −1 src/liblsquic/lsquic_min_heap.c
  120. +1 −1 src/liblsquic/lsquic_min_heap.h
  121. +1 −1 src/liblsquic/lsquic_mini_conn.c
  122. +1 −1 src/liblsquic/lsquic_mini_conn.h
  123. +1 −1 src/liblsquic/lsquic_mini_conn_ietf.c
  124. +1 −1 src/liblsquic/lsquic_mini_conn_ietf.h
  125. +1 −1 src/liblsquic/lsquic_minmax.c
  126. +1 −1 src/liblsquic/lsquic_minmax.h
  127. +1 −1 src/liblsquic/lsquic_mm.c
  128. +1 −1 src/liblsquic/lsquic_mm.h
  129. +1 −1 src/liblsquic/lsquic_pacer.c
  130. +1 −1 src/liblsquic/lsquic_pacer.h
  131. +1 −1 src/liblsquic/lsquic_packet_common.c
  132. +1 −1 src/liblsquic/lsquic_packet_common.h
  133. +1 −1 src/liblsquic/lsquic_packet_gquic.c
  134. +1 −1 src/liblsquic/lsquic_packet_gquic.h
  135. +1 −1 src/liblsquic/lsquic_packet_ietf.h
  136. +1 −1 src/liblsquic/lsquic_packet_in.c
  137. +1 −1 src/liblsquic/lsquic_packet_in.h
  138. +1 −1 src/liblsquic/lsquic_packet_out.c
  139. +1 −1 src/liblsquic/lsquic_packet_out.h
  140. +1 −1 src/liblsquic/lsquic_packet_resize.c
  141. +1 −1 src/liblsquic/lsquic_packet_resize.h
  142. +1 −1 src/liblsquic/lsquic_parse.h
  143. +1 −1 src/liblsquic/lsquic_parse_Q046.c
  144. +1 −1 src/liblsquic/lsquic_parse_Q050.c
  145. +1 −1 src/liblsquic/lsquic_parse_common.c
  146. +1 −1 src/liblsquic/lsquic_parse_common.h
  147. +1 −1 src/liblsquic/lsquic_parse_gquic_be.c
  148. +1 −1 src/liblsquic/lsquic_parse_gquic_be.h
  149. +1 −1 src/liblsquic/lsquic_parse_gquic_common.c
  150. +1 −1 src/liblsquic/lsquic_parse_ietf.h
  151. +1 −1 src/liblsquic/lsquic_parse_ietf_v1.c
  152. +1 −1 src/liblsquic/lsquic_parse_iquic_common.c
  153. +1 −1 src/liblsquic/lsquic_pr_queue.c
  154. +1 −1 src/liblsquic/lsquic_pr_queue.h
  155. +1 −1 src/liblsquic/lsquic_purga.c
  156. +1 −1 src/liblsquic/lsquic_purga.h
  157. +1 −1 src/liblsquic/lsquic_push_promise.h
  158. +1 −1 src/liblsquic/lsquic_qdec_hdl.c
  159. +1 −1 src/liblsquic/lsquic_qdec_hdl.h
  160. +4 −1 src/liblsquic/lsquic_qenc_hdl.c
  161. +1 −1 src/liblsquic/lsquic_qenc_hdl.h
  162. +1 −1 src/liblsquic/lsquic_qlog.c
  163. +1 −1 src/liblsquic/lsquic_qlog.h
  164. +1 −1 src/liblsquic/lsquic_qpack_dec_logger.h
  165. +1 −1 src/liblsquic/lsquic_qpack_enc_logger.h
  166. +1 −1 src/liblsquic/lsquic_qpack_exp.c
  167. +1 −1 src/liblsquic/lsquic_qpack_exp.h
  168. +1 −1 src/liblsquic/lsquic_qtags.h
  169. +1 −1 src/liblsquic/lsquic_rechist.c
  170. +1 −1 src/liblsquic/lsquic_rechist.h
  171. +1 −1 src/liblsquic/lsquic_rtt.c
  172. +1 −1 src/liblsquic/lsquic_rtt.h
  173. +1 −1 src/liblsquic/lsquic_send_ctl.c
  174. +1 −1 src/liblsquic/lsquic_send_ctl.h
  175. +1 −1 src/liblsquic/lsquic_senhist.c
  176. +1 −1 src/liblsquic/lsquic_senhist.h
  177. +1 −1 src/liblsquic/lsquic_set.c
  178. +1 −1 src/liblsquic/lsquic_set.h
  179. +1 −1 src/liblsquic/lsquic_sfcw.c
  180. +1 −1 src/liblsquic/lsquic_sfcw.h
  181. +1 −1 src/liblsquic/lsquic_shsk_stream.c
  182. +1 −1 src/liblsquic/lsquic_shsk_stream.h
  183. +1 −1 src/liblsquic/lsquic_sizes.h
  184. +1 −1 src/liblsquic/lsquic_spi.c
  185. +1 −1 src/liblsquic/lsquic_spi.h
  186. +1 −1 src/liblsquic/lsquic_stock_shi.c
  187. +1 −1 src/liblsquic/lsquic_stock_shi.h
  188. +1 −1 src/liblsquic/lsquic_str.c
  189. +1 −1 src/liblsquic/lsquic_str.h
  190. +1 −1 src/liblsquic/lsquic_stream.c
  191. +1 −1 src/liblsquic/lsquic_stream.h
  192. +1 −1 src/liblsquic/lsquic_tokgen.c
  193. +1 −1 src/liblsquic/lsquic_tokgen.h
  194. +1 −1 src/liblsquic/lsquic_trans_params.c
  195. +1 −1 src/liblsquic/lsquic_trans_params.h
  196. +1 −1 src/liblsquic/lsquic_trechist.c
  197. +1 −1 src/liblsquic/lsquic_trechist.h
  198. +1 −1 src/liblsquic/lsquic_util.c
  199. +1 −1 src/liblsquic/lsquic_util.h
  200. +1 −1 src/liblsquic/lsquic_varint.c
  201. +1 −1 src/liblsquic/lsquic_varint.h
  202. +1 −1 src/liblsquic/lsquic_ver_neg.h
  203. +1 −1 src/liblsquic/lsquic_version.c
  204. +1 −1 src/liblsquic/lsquic_version.h
  205. +1 −1 src/liblsquic/lsquic_xxhash.c
  206. +1 −1 src/liblsquic/lsquic_xxhash.h
  207. +1 −1 tests/CMakeLists.txt
  208. +1 −1 tests/graph_cubic.c
  209. +1 −1 tests/mini_parse.c
  210. +1 −1 tests/test_ack.c
  211. +1 −1 tests/test_ack_merge.c
  212. +1 −1 tests/test_ackgen_gquic_be.c
  213. +1 −1 tests/test_ackparse_gquic_be.c
  214. +1 −1 tests/test_ackparse_ietf.c
  215. +1 −1 tests/test_alarmset.c
  216. +1 −1 tests/test_alt_svc_ver.c
  217. +1 −1 tests/test_arr.c
  218. +1 −1 tests/test_attq.c
  219. +1 −1 tests/test_blocked_gquic_be.c
  220. +1 −1 tests/test_bw_sampler.c
  221. +1 −1 tests/test_chlo_gen.c
  222. +1 −1 tests/test_clear_aead.c
  223. +1 −1 tests/test_conn_close_gquic_be.c
  224. +1 −1 tests/test_conn_hash.c
  225. +1 −1 tests/test_crypto_gen.c
  226. +1 −1 tests/test_cubic.c
  227. +1 −1 tests/test_dec.c
  228. +1 −1 tests/test_di_nocopy.c
  229. +1 −1 tests/test_elision.c
  230. +1 −1 tests/test_engine_ctor.c
  231. +1 −1 tests/test_export_key.c
  232. +1 −1 tests/test_frame_chop.c
  233. +1 −1 tests/test_frame_reader.c
  234. +1 −1 tests/test_frame_rw.c
  235. +1 −1 tests/test_frame_writer.c
  236. +1 −1 tests/test_goaway_gquic_be.c
  237. +1 −1 tests/test_h3_framing.c
  238. +1 −1 tests/test_hcsi_reader.c
  239. +1 −1 tests/test_hkdf.c
  240. +1 −1 tests/test_hpi.c
  241. +1 −1 tests/test_lsquic_hash.c
  242. +1 −1 tests/test_malo.c
  243. +1 −1 tests/test_min_heap.c
  244. +1 −1 tests/test_minmax.c
  245. +1 −1 tests/test_packet_out.c
  246. +1 −1 tests/test_packet_resize.c
  247. +1 −1 tests/test_packno_len.c
  248. +1 −1 tests/test_parse_packet_in.c
  249. +1 −1 tests/test_purga.c
  250. +1 −1 tests/test_qlog.c
  251. +1 −1 tests/test_quic_be_floats.c
  252. +1 −1 tests/test_rechist.c
  253. +1 −1 tests/test_reg_pkt_headergen.c
  254. +1 −1 tests/test_rst_stream_gquic_be.c
  255. +1 −1 tests/test_rst_stream_ietf.c
  256. +1 −1 tests/test_rtt.c
  257. +1 −1 tests/test_send_headers.c
  258. +1 −1 tests/test_senhist.c
  259. +1 −1 tests/test_set.c
  260. +1 −1 tests/test_sfcw.c
  261. +1 −1 tests/test_shi.c
  262. +1 −1 tests/test_some_packets.c
  263. +1 −1 tests/test_spi.c
  264. +1 −1 tests/test_stop_waiting_gquic_be.c
  265. +1 −1 tests/test_stream.c
  266. +1 −1 tests/test_streamgen.c
  267. +1 −1 tests/test_streamparse.c
  268. +1 −1 tests/test_tokgen.c
  269. +1 −1 tests/test_trapa.c
  270. +1 −1 tests/test_trechist.c
  271. +1 −1 tests/test_varint.c
  272. +1 −1 tests/test_ver_nego.c
  273. +1 −1 tests/test_wuf_gquic_be.c
  274. +1 −1 wincompat/README.txt
  275. +1 −1 wincompat/sys/queue.h
  276. +1 −1 wincompat/vc_compat.h

Related news

CVE-2022-30592: Release 3.1.0 · litespeedtech/lsquic@a74702c

liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1.0 mishandles MAX_TABLE_CAPACITY.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE