Vulnerabilities (CVE)

CWE filter

CWE-772

Filter

312 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-16709 1 Imagemagick 1 Imagemagick 2019-10-16 4.3
ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage.
CVE-2019-17178 2 Freerdp, Lodev 2 Freerdp, Lodepngl 2019-10-11 5.0
HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-09-28, as used in WinPR in FreeRDP and other products, has a memory leak because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value.
CVE-2019-17371 1 Libpng 1 Libpng 2019-10-10 4.3
libpng 1.6.37 has memory leaks in png_malloc_warn and png_create_info_struct.
CVE-2018-6554 3 Canonical, Debian, Linux 3 Ubuntu Linux, Debian Linux, Linux Kernel 2019-10-09 4.9
Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users to cause a denial of service (memory consumption) by repeatedly binding an AF_IRDA socket.
CVE-2018-5739 1 Isc 1 Kea 2019-10-09 5.0
An extension to hooks capabilities which debuted in Kea 1.4.0 introduced a memory leak for operators who are using certain hooks library facilities. In order to support multiple requests simultaneously, Kea 1.4 added a callout handle store but...
CVE-2018-10851 1 Powerdns 2 Authoritative, Recursor 2019-10-09 5.0
PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4.0.6, and PowerDNS Recursor 3.2 up to 4.1.4 excluding 4.1.5 and 4.0.9, are vulnerable to a memory leak while parsing malformed records that can lead to remote denial of service.
CVE-2018-0471 1 Cisco 1 Ios Xe 2019-10-09 6.1
A vulnerability in the Cisco Discovery Protocol (CDP) module of Cisco IOS XE Software Releases 16.6.1 and 16.6.2 could allow an unauthenticated, adjacent attacker to cause a memory leak that may lead to a denial of service (DoS) condition. The...
CVE-2018-0421 2019-10-09 5.0
A vulnerability in TCP connection management in Cisco Prime Access Registrar could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition when the application unexpectedly restarts. The vulnerability is due to...
CVE-2018-0165 1 Cisco 1 Ios Xe 2019-10-09 6.1
A vulnerability in the Internet Group Management Protocol (IGMP) packet-processing functionality of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to exhaust buffers on an affected device, resulting in a denial of service...
CVE-2018-0158 1 Cisco 2 Ios, Ios Xe 2019-10-09 7.8
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a memory leak or a reload of an affected device that leads to a denial...
CVE-2017-15132 3 Dovecot, Canonical, Debian 3 Dovecot, Ubuntu Linux, Debian Linux 2019-10-09 5.0
A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results in a memory leak in dovecot's auth client used by login processes. The leak has impact in high performance configuration where same login processes...
CVE-2017-15094 1 Powerdns 1 Recursor 2019-10-09 4.3
An issue has been found in the DNSSEC parsing code of PowerDNS Recursor from 4.0.0 up to and including 4.0.6 leading to a memory leak when parsing specially crafted DNSSEC ECDSA keys. These keys are only parsed when validation is enabled by...
CVE-2017-12278 1 Cisco 1 Wireless Lan Controller Software 2019-10-09 5.2
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Wireless LAN Controllers could allow an authenticated, remote attacker to cause an affected device to restart, resulting in a denial of service (DoS) condition....
CVE-2017-12245 1 Cisco 1 Firepower Management Center 2019-10-09 5.0
A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause depletion of system memory, aka a Firepower Detection Engine SSL Decryption Memory Consumption...
CVE-2019-17183 1 Foxitsoftware 1 Reader 2019-10-09 5.0
Foxit Reader before 9.7 allows an Access Violation and crash if insufficient memory exists.
CVE-2019-17177 1 Freerdp 1 Freerdp 2019-10-08 5.0
libfreerdp/codec/region.c in FreeRDP through 1.1.x and 2.x through 2.0.0-rc4 has memory leaks because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value.
CVE-2019-16994 1 Linux 1 Linux Kernel 2019-10-04 7.8
In the Linux kernel before 5.0, a memory leak exists in sit_init_net() in net/ipv6/sit.c when register_netdev() fails to register sitn->fb_tunnel_dev, which may cause denial of service, aka CID-07f12b26e21a.
CVE-2019-16995 1 Linux 1 Linux Kernel 2019-10-04 7.8
In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.
CVE-2017-7594 1 Libtiff 1 Libtiff 2019-10-03 4.3
The OJPEGReadHeaderInfoSecTablesDcTable function in tif_ojpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (memory leak) via a crafted image.
CVE-2018-5246 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-10-03 4.3
In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImage in coders/pattern.c.