[MEDIUM] ReactPHP's HTTP server continues parsing unused multipart parts after reaching limits

PKSA-wsbn-q9bd-w7z2 CVE-2023-26044 GHSA-95x4-j7vc-h8mf

Affected package: react/http

Affected version: >=0.8.0,<1.9.0

Reported by:
GitHub, FriendsOfPHP/security-advisories