https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-23T03:17:47.020841+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/db96c98d-eec7-41a1-9ce9-65e1df932635/exportdb96c98d-eec7-41a1-9ce9-65e1df9326352026-06-23T03:17:47.417045+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "db96c98d-eec7-41a1-9ce9-65e1df932635", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11941", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mondj7rhaa2q", "content": "CVE-2026-11941 - Use-after-free in connection ID iterator and FFI functions\nCVE ID : CVE-2026-11941\n \n Published : June 19, 2026, 9:55 a.m. | 1\u00a0hour, 41\u00a0minutes ago\n \n Description : Cloudflare Quiche was affected by 2 use-after-free vulnerabilities in the connection ID iterato...", "creation_timestamp": "2026-06-19T12:24:06.456667Z"}2026-06-19T12:24:06.456667+00:00https://vulnerability.circl.lu/sighting/ab67043b-c356-4b90-abc6-9781b37bedad/exportab67043b-c356-4b90-abc6-9781b37bedad2026-06-23T03:17:47.416944+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "ab67043b-c356-4b90-abc6-9781b37bedad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11941", "type": "seen", "source": "https://bsky.app/profile/cybersecinsight.bsky.social/post/3moprjhbain2s", "content": "\ud83d\udd0d Vulnerability Spotlight | Part 2/3\n\n\u26a0\ufe0f CVE-2026-11941\n\nCloudflare Quiche was affected by 2 use-after-free vulnerabilities in the connection ID iterator FFI functions.\n\n\n\nThe \u201cquiche_connection_id_iter_n...", "creation_timestamp": "2026-06-20T11:40:05.625228Z"}2026-06-20T11:40:05.625228+00:00https://vulnerability.circl.lu/sighting/70d932ba-3d7c-42e2-bc72-040bf155d6e8/export70d932ba-3d7c-42e2-bc72-040bf155d6e82026-06-23T03:17:47.415058+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "70d932ba-3d7c-42e2-bc72-040bf155d6e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11941", "type": "seen", "source": "https://gist.github.com/alon710/c5b3f5c6eff1ab2b8225ee8d2a46e1e8", "content": "# CVE-2026-11941: CVE-2026-11941: Use-After-Free Vulnerabilities in Cloudflare Quiche FFI Layer\n\n> **CVSS Score:** 5.6\n> **Published:** 2026-06-19\n> **Full Report:** https://cvereports.com/reports/CVE-2026-11941\n\n## Summary\nTwo critical use-after-free vulnerabilities exist within the Foreign Function Interface (FFI) layer of Cloudflare Quiche, affecting connection ID iterator functions. These flaws occur because raw pointers are returned to C callers pointing to temporary, owned Rust values that are immediately dropped and deallocated upon function exit. This leads to undefined behavior, potential limited heap information disclosure, or application crashes when integrating applications dereference these dangling pointers.\n\n## TL;DR\nCloudflare Quiche FFI layer contains two use-after-free flaws in connection ID iterators, allowing unauthenticated remote triggers to crash C-based host applications via dangling pointer dereferences.\n\n## Technical Details\n\n- **CWE ID**: CWE-416\n- **Attack Vector**: Network (AV:N)\n- **CVSS v3.1 Score**: 5.6 (Medium)\n- **Exploit Status**: None (No public PoC or active exploitation)\n- **CISA KEV Status**: Not Listed\n- **Impact**: Denial of Service (DoS) / Limited Information Disclosure\n- **Affected Component**: quiche/src/ffi.rs\n\n## Affected Systems\n\n- Applications incorporating Cloudflare Quiche via its Foreign Function Interface (FFI) compiled with the 'ffi' cargo feature.\n- **quiche**: >= 0.20.0, < 0.29.2 (Fixed in: `0.29.2`)\n\n## Mitigation\n\n- Upgrade Cloudflare Quiche to version 0.29.2 or higher.\n- Refactor C/C++ host integration logic to use the new iterator-based allocation pattern.\n- Disable the 'ffi' build-time cargo feature if C bindings are not actively required.\n\n**Remediation Steps:**\n1. Modify the Cargo.toml dependency to target quiche >= 0.29.2.\n2. Locate calls to quiche_conn_retired_scid_next in C/C++ wrapper code.\n3. Replace retired SCID retrieval with quiche_conn_retired_scid_iter and quiche_connection_id_iter_next.\n4. Ensure that quiche_connection_id_iter_free is called after iteration to avoid memory leaks.\n5. Recompile and execute tests under AddressSanitizer (ASan) to verify absence of use-after-free conditions.\n\n## References\n\n- [Cloudflare Quiche Advisory (GHSA-mh64-ph39-mrc9)](https://github.com/cloudflare/quiche/security/advisories/GHSA-mh64-ph39-mrc9)\n- [Official CVE.org Record](https://www.cve.org/CVERecord?id=CVE-2026-11941)\n- [NVD Entry](https://nvd.nist.gov/vuln/detail/CVE-2026-11941)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-11941) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-21T20:11:16.000000Z"}2026-06-21T20:11:16+00:00