Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. Prior to 0.11.14, a remote, unauthenticated attacker can trigger a denial of service in applications using vulnerable quinn versions by sending a crafted QUIC Initial packet containing malformed quic_transport_parameters. In quinn-proto parsing logic, attacker-controlled varints are decoded with unwrap(), so truncated encodings cause Err(UnexpectedEnd) and panic. This is reachable over the network with a single packet and no prior trust or authentication. This vulnerability is fixed in 0.11.14.
Weakness
An exception is thrown from a function, but it is not caught.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Logging Subsystem for Red Hat OpenShift 6.4 | RedHat | openshift-logging/vector-rhel9:1780052069 | * |
| Red Hat Ansible Automation Platform 2.6 | RedHat | ansible-automation-platform-26/lightspeed-chatbot-rhel9:1777398576 | * |
| Red Hat OpenShift AI 3.3 | RedHat | rhoai/odh-model-registry-job-async-upload-rhel9:1778596806 | * |
| Red Hat Trusted Artifact Signer 1.3 | RedHat | rhtas/tuffer-rhel9:1773307309 | * |
| Red Hat Trusted Artifact Signer 1.3 | RedHat | rhtas/tuftool-rhel9:1773307309 | * |
| Rust-quinn-proto | Ubuntu | upstream | * |