[MEDIUM] amphp/http-server affected by HTTP/2 DDoS vulnerability

PKSA-n4yt-trn1-vc6d GHSA-8grv-jq2g-cfhw

Affected version: >=2.0.0-rc1,<2.1.10|>=3.0.0-beta.1,<3.4.4

Reported by:
GitHub

Denial of Service via "MadeYouReset" vulnerability

PKSA-32dn-k7sj-x6b5 CVE-2025-8671

Affected version: >=3.0.0-beta1,<3.4.4|>=2.0.0-rc1,<2.1.10

Reported by:
FriendsOfPHP/security-advisories