Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-w3vp-jw9m-f9pm

GitHub Security Advisory

Unbounded queuing of path validation messages in cloudflare-quiche

✓ GitHub Reviewed MODERATE Has CVE
View on GitHub

Advisory Details

### Impact
quiche v. 0.15.0 through 0.19.0 was discovered to be vulnerable to unbounded queuing of path validation messages, which could lead to excessive resource consumption.

QUIC path validation ([RFC 9000 Section 8.2](https://datatracker.ietf.org/doc/html/rfc9000#section-8.2)) requires that the recipient of a PATH_CHALLENGE frame responds by sending a PATH_RESPONSE. An unauthenticated remote attacker can exploit the vulnerability by sending PATH_CHALLENGE frames and manipulating the connection (e.g. by restricting the peer's congestion window size) so that PATH_RESPONSE frames can only be sent at the slower rate than they are received, leading to storage of path validation data in an unbounded queue.

### Patches
Quiche versions greater than 0.19.0 address this problem.

### References
[CVE-2023-6193](https://www.cve.org/CVERecord?id=CVE-2023-6193)
[RFC 9000 Section 8.2](https://datatracker.ietf.org/doc/html/rfc9000#section-8.2)

Affected Packages

crates.io quiche
Affected versions: 0.15.0 (fixed in 0.19.1)

Related CVEs

CVE-2023-6193

Key Information

GHSA ID
GHSA-w3vp-jw9m-f9pm
Published
December 13, 2023 1:34 PM
Last Modified
December 13, 2023 1:34 PM
CVSS Score
5.0 /10
Primary Ecosystem
crates.io
Primary Package
quiche
GitHub Reviewed
✓ Yes

Dataset

Last updated: September 14, 2025 6:31 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.