Vulnerabilities > Missing Release of Resource after Effective Lifetime

DATE CVE VULNERABILITY TITLE RISK
2017-10-12 CVE-2017-15268 Missing Release of Resource after Effective Lifetime vulnerability in Qemu
Qemu through 2.10.0 allows remote attackers to cause a memory leak by triggering slow data-channel read operations, related to io/channel-websock.c.
network
low complexity
qemu CWE-772
7.5
2017-10-10 CVE-2017-15225 Missing Release of Resource after Effective Lifetime vulnerability in GNU Binutils 2.29
_bfd_dwarf2_cleanup_debug_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (memory leak) via a crafted ELF file.
local
low complexity
gnu CWE-772
5.5
2017-10-10 CVE-2017-15189 Missing Release of Resource after Effective Lifetime vulnerability in Wireshark 2.4.0/2.4.1
In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop.
network
low complexity
wireshark CWE-772
7.5
2017-10-10 CVE-2017-15218 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
ImageMagick 7.0.7-2 has a memory leak in ReadOneJNGImage in coders/png.c.
network
low complexity
imagemagick canonical CWE-772
6.5
2017-10-10 CVE-2017-15217 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
ImageMagick 7.0.7-2 has a memory leak in ReadSGIImage in coders/sgi.c.
network
low complexity
imagemagick canonical CWE-772
6.5
2017-10-05 CVE-2017-15033 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.
network
low complexity
imagemagick canonical CWE-772
7.5
2017-10-05 CVE-2017-15032 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.
network
low complexity
imagemagick canonical CWE-772
critical
9.8
2017-10-05 CVE-2017-12245 Missing Release of Resource after Effective Lifetime vulnerability in Cisco Secure Firewall Management Center
A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause depletion of system memory, aka a Firepower Detection Engine SSL Decryption Memory Consumption Denial of Service vulnerability.
network
low complexity
cisco CWE-772
8.6
2017-10-04 CVE-2017-0818 Missing Release of Resource after Effective Lifetime vulnerability in Google Android
A vulnerability in the Android media framework (n/a).
network
low complexity
google CWE-772
7.5
2017-10-04 CVE-2017-0813 Missing Release of Resource after Effective Lifetime vulnerability in Google Android
A denial of service vulnerability in the Android media framework (libstagefright).
network
low complexity
google CWE-772
7.5