"Implementations without header timeout required just a single HTTP/2 connection to crash the server." Endless stream of CONTINUATION frames causing DoS (nowotarski.info) An alert from the CERT ...
New research has found that the CONTINUATION frame in the HTTP/2 protocol can be exploited to conduct denial-of-service (DoS) attacks. The technique has been codenamed HTTP/2 CONTINUATION Flood by ...