- Fix high‑severity CVE‑2024‑27983 HTTP/2 server crash and medium‑severity CVE‑2024‑27982 request smuggling
- Update llhttp to 9.2.1 and undici to 6.11.1, including intermediate version bumps
- Prevent OBS header folding by default and ensure streams close when destroying HTTP/2 sessions
Community impact
Community ratings: 0 Useful, 0 Noise, 0 Risky, 0 Broke, 0 Try.