Vulnerabilities > Missing Release of Resource after Effective Lifetime

DATE CVE VULNERABILITY TITLE RISK
2021-01-15 CVE-2021-0215 Missing Release of Resource After Effective Lifetime vulnerability in Juniper Junos 14.1X53/15.1X49/18.2
On Juniper Networks Junos EX series, QFX Series and SRX branch series devices, a memory leak occurs every time the 802.1X authenticator port interface flaps which can lead to other processes, such as the pfex process, responsible for packet forwarding, to crash and restart.
2.9
2020-12-31 CVE-2020-35876 Missing Release of Resource After Effective Lifetime vulnerability in RIO Project RIO
An issue was discovered in the rio crate through 2020-05-11 for Rust.
network
low complexity
rio-project CWE-772
7.5
2020-12-24 CVE-2020-35679 Missing Release of Resource After Effective Lifetime vulnerability in Opensmtpd
smtpd/table.c in OpenSMTPD before 6.8.0p1 lacks a certain regfree, which might allow attackers to trigger a "very significant" memory leak via messages to an instance that performs many regex lookups.
network
low complexity
opensmtpd CWE-772
5.0
2020-12-24 CVE-2020-27725 Missing Release of Resource After Effective Lifetime vulnerability in F5 Big-Ip Domain Name System
In version 15.1.0-15.1.0.5, 14.1.0-14.1.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2 of BIG-IP DNS, GTM, and Link Controller, zxfrd leaks memory when listing DNS zones.
network
f5 CWE-772
3.5
2020-12-10 CVE-2020-27351 Missing Release of Resource After Effective Lifetime vulnerability in Debian Advanced Package Tool
Various memory and file descriptor leaks were found in apt-python files python/arfile.cc, python/tag.cc, python/tarfile.cc, aka GHSL-2020-170.
local
low complexity
debian CWE-772
2.1
2020-12-03 CVE-2020-14339 Missing Release of Resource After Effective Lifetime vulnerability in Redhat Enterprise Linux and Libvirt
A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process.
local
low complexity
redhat CWE-772
7.2
2020-10-16 CVE-2020-1678 Missing Release of Resource After Effective Lifetime vulnerability in Juniper Junos and Junos Evolved
On Juniper Networks Junos OS and Junos OS Evolved platforms with EVPN configured, receipt of specific BGP packets causes a slow memory leak.
2.9
2020-10-15 CVE-2020-11637 Missing Release of Resource After Effective Lifetime vulnerability in Br-Automation Automation Runtime
A memory leak in the TFTP service in B&R Automation Runtime versions <N4.26, <N4.34, <F4.45, <E4.53, <D4.63, <A4.73 and prior could allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition.
network
low complexity
br-automation CWE-772
5.0
2020-08-26 CVE-2020-5924 Missing Release of Resource After Effective Lifetime vulnerability in F5 Big-Ip Access Policy Manager
In BIG-IP APM versions 12.1.0-12.1.5.1 and 11.6.1-11.6.5.2, RADIUS authentication leaks memory when the username for authentication is not set.
network
low complexity
f5 CWE-772
5.0
2020-08-06 CVE-2020-11937 Missing Release of Resource After Effective Lifetime vulnerability in Canonical Whoopsie
In whoopsie, parse_report() from whoopsie.c allows a local attacker to cause a denial of service via a crafted file.
local
low complexity
canonical CWE-772
2.1