Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

CVEs (1,736)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-3592 1Eclipse 1Mosquitto Feb 13, 2025 Oct 2, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 CONNECT packets with a will message that contains invalid property types.
CVE-2023-20251 1Cisco 1Mobility Express Software Nov 21, 2024 Sep 27, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 A vulnerability in the memory buffer of Cisco Wireless LAN Controller (WLC) AireOS Software could allow an unauthenticated, adjacent attacker to cause memory leaks that could eventually lead to a device reboot. This v...Show more A vulnerability in the memory buffer of Cisco Wireless LAN Controller (WLC) AireOS Software could allow an unauthenticated, adjacent attacker to cause memory leaks that could eventually lead to a device reboot. This vulnerability is due to memory leaks caused by multiple clients connecting under specific conditions. An attacker could exploit this vulnerability by causing multiple wireless clients to attempt to connect to an access point (AP) on an affected device. A successful exploit could allow the attacker to cause the affected device to reboot after a significant amount of time, resulting in a denial of service (DoS) condition.Show less
CVE-2023-5170 1Mozilla 1Firefox Nov 21, 2024 Sep 27, 2023 N/A· v4 7.4 HIGH· v3 N/A· v2 In canvas rendering, a compromised content process could have caused a surface to change unexpectedly, leading to a memory leak of a privileged process. This memory leak could be used to effect a sandbox escape if the co...Show more In canvas rendering, a compromised content process could have caused a surface to change unexpectedly, leading to a memory leak of a privileged process. This memory leak could be used to effect a sandbox escape if the correct data was leaked. This vulnerability affects Firefox < 118.Show less
CVE-2023-5156 2Gnu Redhat 2Enterprise Linux Glibc Nov 21, 2024 Sep 25, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash.
CVE-2023-41484 1Cimg 1Cimg Nov 21, 2024 Sep 20, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 An issue in cimg.eu Cimg Library v2.9.3 allows an attacker to obtain sensitive information via a crafted JPEG file.
CVE-2023-28366 1Eclipse 1Mosquitto Jun 26, 2025 Sep 1, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 The broker in Eclipse Mosquitto 1.3.2 through 2.x before 2.0.16 has a memory leak that can be abused remotely when a client sends many QoS 2 messages with duplicate message IDs, and fails to respond to PUBREC commands. T...Show more The broker in Eclipse Mosquitto 1.3.2 through 2.x before 2.0.16 has a memory leak that can be abused remotely when a client sends many QoS 2 messages with duplicate message IDs, and fails to respond to PUBREC commands. This occurs because of mishandling of EAGAIN from the libc send function.Show less
CVE-2023-4569 3Debian LinuxRedhat 3Debian Linux Enterprise LinuxLinux Kernel Nov 21, 2024 Aug 28, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A memory leak flaw was found in nft_set_catchall_flush in net/netfilter/nf_tables_api.c in the Linux Kernel. This issue may allow a local attacker to cause double-deactivations of catchall elements, which can result in a...Show more A memory leak flaw was found in nft_set_catchall_flush in net/netfilter/nf_tables_api.c in the Linux Kernel. This issue may allow a local attacker to cause double-deactivations of catchall elements, which can result in a memory leak.Show less
CVE-2023-4513 1Wireshark 1Wireshark Nov 3, 2025 Aug 24, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file
CVE-2022-48541 2Fedoraproject Imagemagick 2Fedora Imagemagick Nov 4, 2025 Aug 22, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 A memory leak in ImageMagick 7.0.10-45 and 6.9.11-22 allows remote attackers to perform a denial of service via the "identify -help" command.
CVE-2022-48065 3Fedoraproject GnuNetapp 3Binutils FedoraOntap Select Deploy Administration Utility Nov 21, 2024 Aug 22, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c.
CVE-2022-47011 1Gnu 1Binutils Nov 21, 2024 Aug 22, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered function parse_stab_struct_fields in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks.
CVE-2022-47010 1Gnu 1Binutils Nov 21, 2024 Aug 22, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered function pr_function_type in prdbg.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks.
CVE-2022-47008 1Gnu 1Binutils Nov 21, 2024 Aug 22, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered function make_tempdir, and make_tempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks.
CVE-2022-47007 1Gnu 1Binutils Nov 21, 2024 Aug 22, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered function stab_demangle_v3_arg in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks.
CVE-2020-26683 1Artifex 1Mupdf Nov 21, 2024 Aug 22, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A memory leak issue discovered in /pdf/pdf-font-add.c in Artifex Software MuPDF 1.17.0 allows attackers to obtain sensitive information.
CVE-2020-21490 1Gnu 1Binutils Nov 21, 2024 Aug 22, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered in GNU Binutils 2.34. It is a memory leak when process microblaze-dis.c. This one will consume memory on each insn disassembled.
CVE-2020-19724 1Gnu 1Binutils Nov 21, 2024 Aug 22, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A memory consumption issue in get_data function in binutils/nm.c in GNU nm before 2.34 allows attackers to cause a denial of service via crafted command.
CVE-2023-39978 2Fedoraproject Imagemagick 2Fedora Imagemagick Nov 21, 2024 Aug 8, 2023 N/A· v4 3.3 LOW· v3 N/A· v2 ImageMagick before 6.9.12-91 allows attackers to cause a denial of service (memory consumption) in Magick::Draw.
CVE-2023-32247 2Linux Netapp 5H300s H410sH500s+2 more Nov 21, 2024 Jul 24, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_SESSION_SETUP commands. The issue results from the lack of control of resource c...Show more A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_SESSION_SETUP commands. The issue results from the lack of control of resource consumption. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.Show less
CVE-2023-25399 1Scipy 1Scipy Nov 21, 2024 Jul 5, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A refcounting issue which leads to potential memory leak was discovered in scipy commit 8627df31ab in Py_FindObjects() function. Note: This is disputed as a bug and not a vulnerability. SciPy is not designed to be expose...Show more A refcounting issue which leads to potential memory leak was discovered in scipy commit 8627df31ab in Py_FindObjects() function. Note: This is disputed as a bug and not a vulnerability. SciPy is not designed to be exposed to untrusted users or data directly.Show less

Previous 1...606162...87 Next