Codex Discovered a Hidden HTTP/2 Bomb
Summary
The article reveals HTTP/2 Bomb, a remote DoS attack that exploits HPACK and HTTP/2 flow control to exhaust memory on major web servers. It lists affected servers and provides CVE history, mitigation steps, and disclosure notes. It also includes PoCs and practical guidance for operators.