This page collects WhisperX intelligence signals tagged #CVE-2026-35469. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical memory exhaustion vulnerability in the widely used `moby/spdystream` library has been patched, forcing a mandatory update for any service relying on SPDY/3 communication. The flaw, tracked as CVE-2026-35469, resides in the library's frame parser, which fails to validate attacker-controlled counts and lengths...
A critical security flaw in the widely used `moby/spdystream` library exposes services to remote memory exhaustion attacks. The vulnerability, tracked as CVE-2026-35469, resides in the SPDY/3 frame parser, which fails to validate attacker-controlled input before allocating memory. This allows a remote peer to send a sm...
A critical security vulnerability in the widely used `moby/spdystream` library exposes services to remote memory exhaustion attacks. The flaw, tracked as CVE-2026-35469, resides in the SPDY/3 frame parser, which fails to validate attacker-controlled data before allocating system memory. This allows a remote peer to sen...
A critical security flaw in the widely used `moby/spdystream` library exposes services to remote memory exhaustion attacks. The vulnerability, tracked as CVE-2026-35469, resides in the SPDY/3 frame parser, which fails to validate attacker-controlled counts and lengths before allocating memory. This allows a remote peer...
A critical memory exhaustion vulnerability in the widely used `moby/spdystream` library has been patched, forcing a mandatory security update for countless dependent projects. The flaw, tracked as CVE-2026-35469, resides in the SPDY/3 frame parser, which fails to validate attacker-controlled counts and lengths before a...
A critical security vulnerability in the widely used `moby/spdystream` library has been patched, forcing a mandatory update for any service relying on it. The flaw, tracked as CVE-2026-35469, resides in the SPDY/3 frame parser and allows a remote attacker to trigger uncontrolled memory allocation, potentially causing a...
A security fix for CVE-2026-35469 in OpenShift Container Manager release 2.15 has revealed the intricate challenge of patching vulnerabilities buried deep in indirect dependency trees. The target package, github.com/moby/spdystream, must be upgraded to v0.5.1 to address the vulnerability, but the fix cannot be applied ...