Security Update
• Fixed an encrypted traffic's malleable vulnerability that allow integrity corruption by an attacker with a privileged network position to silently drop segments of traffic from an encrypted traffic stream. Thanks Ellis Fenske for reporting this vulnerability.
-----> ⚠️ Important Message ⚠️<-----
This update includes security fix recommended for all users.
-----> ⚠️ 重要消息 ⚠️<-----
本更新含适用于所有用户的安全更新。
Chore
- Chore: bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 by @dependabot in #2847
- Chore: bump github.com/quic-go/quic-go from 0.40.0 to 0.41.0 by @dependabot in #2856