hyper (and related projects in hyperium) use the same security policy as the Tokio project.
The process for reporting an issue is the same as the Tokio project. This includes private reporting via security@tokio.rs.
Security: hyperium/hyper
Security
SECURITY.md
-
Lenient Parsing of Content-Length Header When Prefixed with Plus SignGHSA-f3pg-qwvg-p99c published
Jul 7, 2021 by seanmonstarLow -
Integer Overflow in Chunked Transfer-EncodingGHSA-5h46-h7hh-c6x9 published
Jul 7, 2021 by seanmonstarModerate -
Multiple Transfer-Encoding headers misinterprets request payloadGHSA-6hfq-h8hq-87mf published
Feb 5, 2021 by seanmonstarModerate
Learn more about advisories related to hyperium/hyper in the GitHub Advisory Database