In all my years, and Ive lived a lot of years, I’ve never seen this kind of thing happen so much.
CloudFlare was down again
- Thread starter 1974Mustang
- Start date
In all my years, and Ive lived a lot of years, I’ve never seen this kind of thing happen so much.
It was owing to a React vulnerability and they mishandled it like they shouldn't have. The update should have been seamless, but they managed to fuck it up.
Earlier last week, React released a patch and a disclosure on an unauthenticated Remote code execution vulnerability in React Server Components aka RSC - https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components
This was what I spent much of my last week on. Updating clients with NextJS sites or any product with RSC implemented.
We faced the exact same issues they did on several occasions (body parsing errors post update) but the only difference was our updates didn't bring down half the Internet. And after our first update, we implemented a severe test pipeline to ensure no other client faced the same issue.
2 downtimes within 2 weeks. Not looking good there.
Earlier last week, React released a patch and a disclosure on an unauthenticated Remote code execution vulnerability in React Server Components aka RSC - https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components
This was what I spent much of my last week on. Updating clients with NextJS sites or any product with RSC implemented.
We faced the exact same issues they did on several occasions (body parsing errors post update) but the only difference was our updates didn't bring down half the Internet. And after our first update, we implemented a severe test pipeline to ensure no other client faced the same issue.
2 downtimes within 2 weeks. Not looking good there.
