Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
chore(deps): Bump h2 from 0.3.19 to 0.3.20 (vectordotdev#17767)
Bumps [h2](https://github.com/hyperium/h2) from 0.3.19 to 0.3.20. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hyperium/h2/releases">h2's releases</a>.</em></p> <blockquote> <h2>v0.3.20</h2> <h2>Bug Fixes</h2> <ul> <li>Fix panic if a server received a request with a <code>:status</code> pseudo header in the 1xx range. (<a href="https://redirect.github.com/hyperium/h2/issues/695">#695</a>)</li> <li>Fix panic if a reset stream had pending push promises that were more than allowed. (<a href="https://redirect.github.com/hyperium/h2/issues/685">#685</a>)</li> <li>Fix potential flow control overflow by subtraction, instead returning a connection error. (<a href="https://redirect.github.com/hyperium/h2/issues/692">#692</a>)</li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/f0rki"><code>@f0rki</code></a> made their first contribution in <a href="https://redirect.github.com/hyperium/h2/pull/690">hyperium/h2#690</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hyperium/h2/blob/master/CHANGELOG.md">h2's changelog</a>.</em></p> <blockquote> <h1>0.3.20 (June 26, 2023)</h1> <ul> <li>Fix panic if a server received a request with a <code>:status</code> pseudo header in the 1xx range.</li> <li>Fix panic if a reset stream had pending push promises that were more than allowed.</li> <li>Fix potential flow control overflow by subtraction, instead returning a connection error.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hyperium/h2/commit/6a75f232330374d5f329aaae91afc2dee7ed2b1f"><code>6a75f23</code></a> v0.3.20</li> <li><a href="https://github.com/hyperium/h2/commit/0189722fd64d3cb5acd9764fdb85bb9a95232ea8"><code>0189722</code></a> Fix for a fuzzer-discovered integer underflow of the flow control window size...</li> <li><a href="https://github.com/hyperium/h2/commit/478f7b9889e9d8d53756558cca45cebd68aeaea0"><code>478f7b9</code></a> Fix for invalid header panic corrected (<a href="https://redirect.github.com/hyperium/h2/issues/695">#695</a>)</li> <li><a href="https://github.com/hyperium/h2/commit/864430c5dd453b70c29bb3d058e81876858380f4"><code>864430c</code></a> Enabled clippy in CI and ran <code>clippy --fix</code></li> <li><a href="https://github.com/hyperium/h2/commit/972fb6f19ff195f9ea3920b40c862c60b898e791"><code>972fb6f</code></a> chore: add funding file</li> <li><a href="https://github.com/hyperium/h2/commit/97bc3e36cf299e4e064653ced3352fc82a9cea70"><code>97bc3e3</code></a> hammer test requires a new tokio feature</li> <li><a href="https://github.com/hyperium/h2/commit/66c36c4edb04d8f75ca66b9199546308fe089c0d"><code>66c36c4</code></a> fix panic on receiving invalid headers frame by making the <code>take_request</code> fun...</li> <li><a href="https://github.com/hyperium/h2/commit/04e6398bfe0cd9cb9590bc198c0921ac6441aea9"><code>04e6398</code></a> fix: panicked when a reset stream would decrement twice</li> <li>See full diff in <a href="https://github.com/hyperium/h2/compare/v0.3.19...v0.3.20">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=h2&package-manager=cargo&previous-version=0.3.19&new-version=0.3.20)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- Loading branch information