RUSTSEC-2023-0085: 
Rust vulnerability analysis and mitigation

A panic vulnerability was discovered in the hpack-rs Rust crate's Decoder struct, identified as RUSTSEC-2023-0085. The vulnerability stems from insufficient buffer length validation when parsing integers in the updatemaxdynamic_size function after encountering a SizeUpdate field. This vulnerability affects users who decode untrusted input using the Decoder (GitHub Issue).

The vulnerability exists in the Decoder struct's updatemaxdynamic_size function, which fails to validate buffer length before parsing integers. The issue occurs specifically when processing a SizeUpdate field, where the code assumes the buffer contains enough data without proper validation. A proof of concept can be triggered with just a single byte input: [0x3f] (GitHub Issue).

When exploited, this vulnerability causes a panic in applications using the hpack-rs crate to decode HPACK-encoded data. This could lead to denial of service conditions in applications processing untrusted HTTP/2 headers (GitHub Issue).

A patched version of the crate has been made available on crates.io under the name 'hpack-patched'. Users can mitigate the vulnerability by updating their dependencies to use this patched version. The fix involves properly handling the return value from decodeinteger and implementing proper error handling in the updatemaxdynamicsize function (GitHub Issue).