VYPR

CWE-772

Missing Release of Resource after Effective Lifetime

BaseDraftLikelihood: High

Description

The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-469

CVEs mapped to this weakness (345)

page 9 of 18
  • CVE-2017-13060MedAug 22, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-5, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-13059MedAug 22, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WriteOneJNGImage in coders/png.c, which allows attackers to cause a denial of service (WriteJNGImage memory consumption) via a crafted file.

  • CVE-2017-13058MedAug 22, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WritePCXImage in coders/pcx.c, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-12676MedAug 7, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service.

  • CVE-2017-12675MedAug 7, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service.

  • CVE-2017-12673MedAug 7, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service.

  • CVE-2017-12672MedAug 7, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service.

  • CVE-2017-12654MedAug 7, 2017
    risk 0.42cvss 6.5epss 0.01

    The ReadPICTImage function in coders/pict.c in ImageMagick 7.0.6-3 allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-12566MedAug 5, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadMVGImage in coders/mvg.c, which allows attackers to cause a denial of service, related to the function ReadSVGImage in svg.c.

  • CVE-2017-12565MedAug 5, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service.

  • CVE-2017-12564MedAug 5, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service.

  • CVE-2017-12433MedAug 4, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadPESImage in coders/pes.c, which allows attackers to cause a denial of service, related to ResizeMagickMemory in memory.c.

  • CVE-2017-12427MedAug 4, 2017
    risk 0.42cvss 6.5epss 0.02

    The ProcessMSLScript function in coders/msl.c in ImageMagick before 6.9.9-5 and 7.x before 7.0.6-5 allows remote attackers to cause a denial of service (memory leak) via a crafted file, related to the WriteMSLImage function.

  • CVE-2017-11755MedJul 30, 2017
    risk 0.42cvss 6.5epss 0.01

    The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an AcquireSemaphoreInfo call.

  • CVE-2017-11754MedJul 30, 2017
    risk 0.42cvss 6.5epss 0.02

    The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an OpenPixelCache call.

  • CVE-2017-11752MedJul 30, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadMAGICKImage function in coders/magick.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-11751MedJul 30, 2017
    risk 0.42cvss 6.5epss 0.02

    The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-11724MedJul 29, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadMATImage function in coders/mat.c in ImageMagick through 6.9.9-3 and 7.x through 7.0.6-3 has memory leaks involving the quantum_info and clone_info data structures.

  • CVE-2017-11705MedJul 28, 2017
    risk 0.42cvss 6.5epss 0.01

    A memory leak was found in the function parseSWF_SHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-11703MedJul 28, 2017
    risk 0.42cvss 6.5epss 0.01

    A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.