Vulnerabilities > Missing Release of Resource after Effective Lifetime

DATE CVE VULNERABILITY TITLE RISK
2017-04-30 CVE-2017-8346 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
In ImageMagick 7.0.5-5, the ReadDCMImage function in dcm.c allows attackers to cause a denial of service (memory leak) via a crafted file.
network
low complexity
imagemagick debian CWE-772
6.5
2017-04-30 CVE-2017-8345 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
In ImageMagick 7.0.5-5, the ReadMNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.
network
low complexity
imagemagick debian CWE-772
6.5
2017-04-30 CVE-2017-8344 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
In ImageMagick 7.0.5-5, the ReadPCXImage function in pcx.c allows attackers to cause a denial of service (memory leak) via a crafted file.
network
low complexity
imagemagick debian CWE-772
6.5
2017-04-30 CVE-2017-8343 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
In ImageMagick 7.0.5-5, the ReadAAIImage function in aai.c allows attackers to cause a denial of service (memory leak) via a crafted file.
network
low complexity
imagemagick debian CWE-772
6.5
2017-04-24 CVE-2017-2315 Missing Release of Resource after Effective Lifetime vulnerability in Juniper Junos
On Juniper Networks EX Series Ethernet Switches running affected Junos OS versions, a vulnerability in IPv6 processing has been discovered that may allow a specially crafted IPv6 Neighbor Discovery (ND) packet destined to an EX Series Ethernet Switch to cause a slow memory leak.
network
low complexity
juniper CWE-772
7.5
2017-04-24 CVE-2017-2312 Missing Release of Resource after Effective Lifetime vulnerability in Juniper Junos
On Juniper Networks devices running Junos OS affected versions and with LDP enabled, a specific LDP packet destined to the RE (Routing Engine) will consume a small amount of the memory allocated for the rpd (routing protocol daemon) process.
network
low complexity
juniper CWE-772
6.5
2017-04-24 CVE-2010-5321 Missing Release of Resource after Effective Lifetime vulnerability in Linux Kernel
Memory leak in drivers/media/video/videobuf-core.c in the videobuf subsystem in the Linux kernel 2.6.x through 4.x allows local users to cause a denial of service (memory consumption) by leveraging /dev/video access for a series of mmap calls that require new allocations, a different vulnerability than CVE-2007-6761.
low complexity
linux CWE-772
4.3
2017-04-18 CVE-2017-7943 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
network
low complexity
imagemagick debian CWE-772
6.5
2017-04-18 CVE-2017-7942 Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.54
The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
network
low complexity
imagemagick CWE-772
6.5
2017-04-18 CVE-2017-7941 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
network
low complexity
imagemagick debian CWE-772
6.5