v5.14.1
Security Update
• Fixed an encrypted traffic's malleable vulnerability that allow integrity corruption by an attacker with a privileged network position to silently drop segments of traffic from an encrypted traffic stream. Thanks Ellis Fenske for reporting this vulnerability.
-----> ⚠️ Important Message ⚠️ <-----
This update includes security fix recommended for all users.
-----> ⚠️ 重要消息 ⚠️ <-----
本更新含适用于所有用户的安全更新。
Chore
- Chore: bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 by @dependabot in #2847
- Chore: bump github.com/quic-go/quic-go from 0.40.0 to 0.41.0 by @dependabot in #2856