The LiteSpeed team has released a critical security update addressing a vulnerability in the QUIC and HTTP/3 library (LSQUIC). This issue could allow crafted requests to trigger memory leaks, potentially leading to Denial-of-Service (DoS).

What we’re doing

We are currently testing an automatic update that will bring all OpenLiteSpeed servers connected to RunCloud up to OLS v1.8.4. Once testing is complete, the update will be rolled out automatically across affected servers.

Next steps

• At this stage, no action is required from you.
• We will publish a separate announcement once the update is released to production and has been applied automatically.

For full details, see the official LiteSpeed advisory: LiteSpeed Security Update – Aug 18, 2025.