CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Related To CWE-772

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2019-17371 772 2019-10-09 2019-10-10
4.3
None Remote Medium Not required None None Partial
libpng 1.6.37 has memory leaks in png_malloc_warn and png_create_info_struct.
2 CVE-2019-17183 772 2019-10-04 2019-10-09
5.0
None Remote Low Not required None None Partial
Foxit Reader before 9.7 allows an Access Violation and crash if insufficient memory exists.
3 CVE-2019-17178 772 2019-10-04 2019-10-11
5.0
None Remote Low Not required None None Partial
HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-09-28, as used in WinPR in FreeRDP and other products, has a memory leak because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value.
4 CVE-2019-17177 772 2019-10-04 2019-10-08
5.0
None Remote Low Not required None None Partial
libfreerdp/codec/region.c in FreeRDP through 1.1.x and 2.x through 2.0.0-rc4 has memory leaks because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value.
5 CVE-2019-16995 772 DoS 2019-09-30 2019-10-04
7.8
None Remote Low Not required None None Complete
In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.
6 CVE-2019-16994 772 DoS 2019-09-30 2019-10-04
7.8
None Remote Low Not required None None Complete
In the Linux kernel before 5.0, a memory leak exists in sit_init_net() in net/ipv6/sit.c when register_netdev() fails to register sitn->fb_tunnel_dev, which may cause denial of service, aka CID-07f12b26e21a.
7 CVE-2019-16713 772 2019-09-23 2019-09-23
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c.
8 CVE-2019-16712 772 2019-09-23 2019-09-23
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated by WritePS3Image.
9 CVE-2019-16711 772 2019-09-23 2019-09-23
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c.
10 CVE-2019-16710 772 2019-09-23 2019-09-23
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c.
11 CVE-2019-16709 772 2019-09-23 2019-09-23
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage.
12 CVE-2019-16708 772 2019-09-23 2019-09-23
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-35 has a memory leak in magick/xwindow.c, related to XCreateImage.
13 CVE-2018-1999043 772 DoS 2018-08-23 2019-10-02
5.0
None Remote Low Not required None None Partial
A denial of service vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in BasicAuthenticationFilter.java, BasicHeaderApiTokenAuthenticator.java that allows attackers to create ephemeral in-memory user records by attempting to log in using invalid credentials.
14 CVE-2018-1000215 772 DoS 2018-08-20 2019-10-02
5.0
None Remote Low Not required None None Partial
Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS). This attack appear to be exploitable via If the attacker can force the data to be printed and the system is in low memory it can force a leak of memory. This vulnerability appears to have been fixed in 1.7.7.
15 CVE-2018-1000036 772 DoS 2018-05-24 2019-10-02
4.3
None Remote Medium Not required None None Partial
In MuPDF 1.12.0 and earlier, multiple memory leaks in the PDF parser allow an attacker to cause a denial of service (memory leak) via a crafted file.
16 CVE-2018-20657 772 DoS 2019-01-02 2019-10-02
5.0
None Remote Low Not required None None Partial
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a crafted string, leading to a denial of service (memory consumption), as demonstrated by cxxfilt, a related issue to CVE-2018-12698.
17 CVE-2018-20622 772 2018-12-31 2019-10-02
4.3
None Remote Medium Not required None None Partial
JasPer 2.0.14 has a memory leak in base/jas_malloc.c in libjasper.a when "--output-format jp2" is used.
18 CVE-2018-20540 772 2018-12-28 2019-10-02
4.3
None Remote Medium Not required None None Partial
There is memory leak at liblas::Open (liblas/liblas.hpp) in libLAS 1.8.1.
19 CVE-2018-20408 772 2018-12-23 2019-10-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in Bento4 1.5.1-627. There is a memory leak in AP4_StdcFileByteStream::Create in System/StdC/Ap4StdCFileByteStream.cpp, as demonstrated by mp42hls.
20 CVE-2018-20407 772 2018-12-23 2019-10-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in Bento4 1.5.1-627. There is a memory leak in AP4_DescriptorFactory::CreateDescriptorFromStream in Core/Ap4DescriptorFactory.cpp, as demonstrated by mp42hls.
21 CVE-2018-20126 772 2018-12-20 2019-10-02
2.1
None Local Low Not required None None Partial
hw/rdma/vmw/pvrdma_cmd.c in QEMU allows create_cq and create_qp memory leaks because errors are mishandled.
22 CVE-2018-20123 772 2018-12-17 2019-10-02
2.1
None Local Low Not required None None Partial
pvrdma_realize in hw/rdma/vmw/pvrdma_main.c in QEMU has a Memory leak after an initialisation error.
23 CVE-2018-20002 772 DoS 2018-12-09 2019-10-02
4.3
None Remote Medium Not required None None Partial
The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, has a memory leak via a crafted ELF file, leading to a denial of service (memory consumption), as demonstrated by nm.
24 CVE-2018-19760 772 2018-11-29 2019-10-02
6.8
None Remote Medium Not required Partial Partial Partial
cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak.
25 CVE-2018-19213 772 2018-11-12 2019-10-02
4.3
None Remote Medium Not required None None Partial
Netwide Assembler (NASM) through 2.14rc16 has memory leaks that may lead to DoS, related to nasm_malloc in nasmlib/malloc.c.
26 CVE-2018-19139 772 2018-11-09 2019-10-02
4.3
None Remote Medium Not required None None Partial
An issue has been found in JasPer 2.0.14. There is a memory leak in jas_malloc.c when called from jpc_unk_getparms in jpc_cs.c.
27 CVE-2018-19132 772 DoS 2018-11-09 2019-10-02
4.3
None Remote Medium Not required None None Partial
Squid before 4.4, when SNMP is enabled, allows a denial of service (Memory Leak) via an SNMP packet.
28 CVE-2018-18897 772 2018-11-02 2019-10-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo.
29 CVE-2018-18544 772 2018-10-20 2019-10-02
4.3
None Remote Medium Not required None None Partial
There is a memory leak in the function WriteMSLImage of coders/msl.c in ImageMagick 7.0.8-13 Q16, and the function ProcessMSLScript of coders/msl.c in GraphicsMagick before 1.3.31.
30 CVE-2018-18482 772 DoS 2018-10-18 2019-10-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in libpg_query 10-1.0.2. There is a memory leak in pg_query_raw_parse in pg_query_parse.c, which might lead to a denial of service.
31 CVE-2018-18443 772 2018-10-17 2019-10-02
4.3
None Remote Medium Not required None None Partial
OpenEXR 2.3.0 has a memory leak in ThreadPool in IlmBase/IlmThread/IlmThreadPool.cpp, as demonstrated by exrmultiview.
32 CVE-2018-18226 772 2018-10-12 2019-10-02
7.8
None Remote Low Not required None None Complete
In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This was addressed in epan/dissectors/packet-steam-ihs-discovery.c by changing the memory-management approach.
33 CVE-2018-18016 772 2018-10-05 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage in coders/pcx.c.
34 CVE-2018-17967 772 2018-10-03 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.7-28 has a memory leak vulnerability in ReadBGRImage in coders/bgr.c.
35 CVE-2018-17966 772 2018-10-03 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage in coders/pdb.c.
36 CVE-2018-17965 772 2018-10-03 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.7-28 has a memory leak vulnerability in WriteSGIImage in coders/sgi.c.
37 CVE-2018-17437 772 DoS 2018-09-24 2019-10-02
4.3
None Remote Medium Not required None None Partial
Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file.
38 CVE-2018-17332 772 2018-09-22 2019-10-02
5.0
None Remote Low Not required None None Partial
An issue was discovered in libsvg2 through 2012-10-19. The svgGetNextPathField function in svg_string.c returns its input pointer in certain circumstances, which might result in a memory leak caused by wasteful malloc calls.
39 CVE-2018-17234 772 DoS 2018-09-20 2019-10-02
4.3
None Remote Medium Not required None None Partial
Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file.
40 CVE-2018-16807 772 2018-09-10 2019-10-02
5.0
None Remote Low Not required None None Partial
In Bro through 2.5.5, there is a memory leak potentially leading to DoS in scripts/base/protocols/krb/main.bro in the Kerberos protocol parser.
41 CVE-2018-16750 772 2018-09-09 2019-10-02
4.3
None Remote Medium Not required None None Partial
In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found.
42 CVE-2018-16641 772 2018-09-06 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-6 has a memory leak vulnerability in the TIFFWritePhotoshopLayers function in coders/tiff.c.
43 CVE-2018-16640 772 2018-09-06 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c.
44 CVE-2018-16548 772 DoS 2018-09-05 2019-10-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
45 CVE-2018-14437 772 2018-07-19 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c.
46 CVE-2018-14436 772 2018-07-19 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-4 has a memory leak in ReadMIFFImage in coders/miff.c.
47 CVE-2018-14435 772 2018-07-19 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c.
48 CVE-2018-14434 772 2018-07-19 2019-10-02
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-4 has a memory leak for a colormap in WriteMPCImage in coders/mpc.c.
49 CVE-2018-14073 772 2018-07-15 2019-10-02
5.0
None Remote Low Not required None None Partial
libsixel 1.8.1 has a memory leak in sixel_allocator_new in allocator.c.
50 CVE-2018-14072 772 2018-07-15 2019-10-02
5.0
None Remote Low Not required None None Partial
libsixel 1.8.1 has a memory leak in sixel_decoder_decode in decoder.c, image_buffer_resize in fromsixel.c, and sixel_decode_raw in fromsixel.c.
Total number of vulnerabilities : 306   Page : 1 (This Page)2 3 4 5 6 7
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.