Vulnerabilities > Missing Release of Resource after Effective Lifetime
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-04 | CVE-2019-17178 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-09-28, as used in WinPR in FreeRDP and other products, has a memory leak because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value. | 5.0 |
| 2019-10-04 | CVE-2019-17177 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products libfreerdp/codec/region.c in FreeRDP through 1.1.x and 2.x through 2.0.0-rc4 has memory leaks because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value. | 5.0 |
| 2019-09-30 | CVE-2019-16995 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d. | 7.8 |
| 2019-09-30 | CVE-2019-16994 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products In the Linux kernel before 5.0, a memory leak exists in sit_init_net() in net/ipv6/sit.c when register_netdev() fails to register sitn->fb_tunnel_dev, which may cause denial of service, aka CID-07f12b26e21a. | 4.7 |
| 2019-08-28 | CVE-2019-1965 | Missing Release of Resource after Effective Lifetime vulnerability in Cisco Nx-Os A vulnerability in the Virtual Shell (VSH) session management for Cisco NX-OS Software could allow an authenticated, remote attacker to cause a VSH process to fail to delete upon termination. | 4.0 |
| 2019-04-26 | CVE-2018-5179 | Missing Release of Resource after Effective Lifetime vulnerability in Mozilla Firefox A service worker can send the activate event on itself periodically which allows it to run perpetually, allowing it to monitor activity by users. | 5.0 |
| 2019-04-17 | CVE-2019-3883 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products In 389-ds-base up to version 1.4.1.2, requests are handled by workers threads. | 7.5 |
| 2019-03-27 | CVE-2019-3821 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. | 5.0 |
| 2019-03-21 | CVE-2017-16232 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service (memory consumption), as demonstrated by tif_open.c, tif_lzw.c, and tif_aux.c. | 7.5 |
| 2019-02-27 | CVE-2019-5671 | Missing Release of Resource after Effective Lifetime vulnerability in Nvidia GPU Driver NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the software does not release a resource after its effective lifetime has ended, which may lead to denial of service. | 4.9 |