CVE-2023-6193

Name of the Vulnerable Software and Affected Versions quiche versions 0.15.0 through 0.19.0

Description The issue is related to unbounded queuing of path validation messages, which could lead to excessive resource consumption. QUIC path validation requires that the recipient of a PATH CHALLENGE frame responds by sending a PATH RESPONSE. An unauthenticated remote attacker can exploit this by sending PATH CHALLENGE frames and manipulating the connection, such as restricting the peer's congestion window size, so that PATH RESPONSE frames can only be sent at a slower rate than they are received, leading to storage of path validation data in an unbounded queue.

Recommendations For quiche versions 0.15.0 through 0.19.0, update to a version greater than 0.19.0 to address this problem. As a temporary workaround, consider restricting access to the PATH CHALLENGE frame to minimize the risk of exploitation. Avoid manipulating the connection to restrict the peer's congestion window size, which can exacerbate the issue.