A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.
{ "severity": "High", "cpes": [ "cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*", "cpe:2.3:a:golang:go:1.20.0:-:*:*:*:*:*:*" ] }