CloudFlare Boring
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in CloudFlare Boring.
By the Year
In 2026 there have been 0 vulnerabilities in CloudFlare Boring. Boring did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 5.30 |
It may take a day or so for new Boring vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent CloudFlare Boring Security Vulnerabilities
Memory Leak in tokio-boring 4.0.0 Leads to DoS via Resource Exhaustion
CVE-2023-6180
5.3 - Medium
- December 05, 2023
The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The set_ex_data function used by the library did not deallocate memory used by pre-existing data in memory each time after completing a TLS connection causing the program to consume more resources with each new connection.
Memory Leak
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for CloudFlare Boring or by CloudFlare? Click the Watch button to subscribe.
