Glbrntt

Name of the Vulnerable Software and Affected Versions: gRPC Swift versions 1.1.1 and earlier Description: The issue allows remote attackers to cause a denial of service via the delivery of many small messages within a single HTTP/2 frame, leading to uncontrolled recursion and stack consumption. Affected gRPC Swift servers are vulnerable to uncontrolled recursion and stack consumption when parsing certain payloads. Recommendations: For gRPC Swift versions 1.1.1 and earlier, upgrade to version 1.2.0 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: gRPC Swift versions 1.1.0 and earlier Description: The issue allows remote attackers to cause uncontrolled resource consumption and deny service due to the allocation of buffers of arbitrary length when parsing messages. This can lead to excessive memory allocation, resulting in a denial of service. Recommendations: For gRPC Swift versions 1.1.0 and earlier, upgrade to version 1.2.0 to resolve the issue.