VYPR

CWE-772

Missing Release of Resource after Effective Lifetime

BaseDraftLikelihood: High

Description

The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-469

CVEs mapped to this weakness (345)

page 7 of 18
  • CVE-2018-10804MedMay 8, 2018
    risk 0.42cvss 6.5epss 0.02

    ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/tiff.c.

  • CVE-2018-10801MedMay 8, 2018
    risk 0.42cvss 6.5epss 0.01

    TIFFClientOpen in tif_unix.c in LibTIFF 3.8.2 has memory leaks, as demonstrated by bmp2tiff.

  • CVE-2017-18254MedMar 27, 2018
    risk 0.42cvss 6.5epss 0.02

    An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, which allow remote attackers to cause a denial of service via a crafted file.

  • CVE-2017-18251MedMar 27, 2018
    risk 0.42cvss 6.5epss 0.02

    An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function ReadPCDImage in coders/pcd.c, which allow remote attackers to cause a denial of service via a crafted file.

  • CVE-2017-15315MedMar 9, 2018
    risk 0.42cvss 6.5epss 0.01

    Patch module of Huawei NIP6300 V500R001C20SPC100, V500R001C20SPC200, NIP6600 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6300 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6500 V500R001C20SPC100, V500R001C20SPC200 has a memory leak vulnerability. An authenticated…

  • CVE-2018-7727MedMar 6, 2018
    risk 0.42cvss 6.5epss 0.01

    An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack.

  • CVE-2017-13234MedFeb 12, 2018
    risk 0.42cvss 6.5epss 0.01

    In DLSParser of the sonivox library, there is possible resource exhaustion due to a memory leak. This could lead to remote temporary denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 5.1.1,…

  • CVE-2018-6405MedJan 30, 2018
    risk 0.42cvss 6.5epss 0.02

    In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. This allows remote attackers to cause a denial of service.

  • CVE-2017-18027MedJan 12, 2018
    risk 0.42cvss 6.5epss 0.03

    In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attackers to cause a denial of service via a crafted file.

  • CVE-2018-5358MedJan 12, 2018
    risk 0.42cvss 6.5epss 0.02

    ImageMagick 7.0.7-22 Q16 has memory leaks in the EncodeImageAttributes function in coders/json.c, as demonstrated by the ReadPSDLayersInternal function in coders/psd.c.

  • CVE-2018-5247MedJan 5, 2018
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in coders/rla.c.

  • CVE-2017-18022MedJan 5, 2018
    risk 0.42cvss 6.5epss 0.03

    In ImageMagick 7.0.7-12 Q16, there are memory leaks in MontageImageCommand in MagickWand/montage.c.

  • CVE-2017-18008MedJan 1, 2018
    risk 0.42cvss 6.5epss 0.03

    In ImageMagick 7.0.7-17 Q16, there is a Memory Leak in ReadPWPImage in coders/pwp.c.

  • CVE-2017-17934MedDec 27, 2017
    risk 0.42cvss 6.5epss 0.03

    ImageMagick 7.0.7-17 Q16 x86_64 has memory leaks in coders/msl.c, related to MSLPopImage and ProcessMSLScript, and associated with mishandling of MSLPushImage calls.

  • CVE-2017-17887MedDec 27, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function GetImagePixelCache in magick/cache.c, which allows attackers to cause a denial of service via a crafted MNG image file that is processed by ReadOneMNGImage.

  • CVE-2017-17886MedDec 27, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attackers to cause a denial of service via a crafted psd image file.

  • CVE-2017-17885MedDec 27, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPICTImage in coders/pict.c, which allows attackers to cause a denial of service via a crafted PICT image file.

  • CVE-2017-17884MedDec 27, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function WriteOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted PNG image file.

  • CVE-2017-17883MedDec 27, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPGXImage in coders/pgx.c, which allows attackers to cause a denial of service via a crafted PGX image file.

  • CVE-2017-17882MedDec 27, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file.