Lucene search
K

18 matches found

Vulnrichment
Vulnrichment
added 2026/06/04 2:45 p.m.6 views

CVE-2026-45287 OpenTelemetry-Go's Schema ParseFile leaks file descriptors on each parse

OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to version 0.0.17, go.opentelemetry.io/otel/schema/v1.0 and go.opentelemetry.io/otel/schema/v1.1 leaks one file descriptor on each successful ParseFile call. ParseFile opens the schema file and passes it to Parse without closing it...

2.1CVSS5.4AI score0.00168EPSS
Exploits1References3
OSV
OSV
added 2025/09/16 8:15 a.m.3 views

DEBIAN-CVE-2023-53290

In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix fout leak in hbm's runbpfprog Fix fout being fopen'ed but then not subsequently fclose'd. In the affected branch, fout is otherwise going out of scope...

5.5CVSS5.4AI score0.00135EPSS
Exploits0References1
OSV
OSV
added 2025/09/16 8:15 a.m.4 views

UBUNTU-CVE-2023-53290

In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix fout leak in hbm's runbpfprog Fix fout being fopen'ed but then not subsequently fclose'd. In the affected branch, fout is otherwise going out of scope...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/09/16 8:11 a.m.10 views

CVE-2023-53290 samples/bpf: Fix fout leak in hbm's run_bpf_prog

In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix fout leak in hbm's runbpfprog Fix fout being fopen'ed but then not subsequently fclose'd. In the affected branch, fout is otherwise going out of scope...

0.00135EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/09/16 8:11 a.m.4 views

CVE-2023-53290

In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix fout leak in hbm's runbpfprog Fix fout being fopen'ed but then not subsequently fclose'd. In the affected branch, fout is otherwise going out of scope...

5.5CVSS5.4AI score0.00135EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.6 views

PT-2025-37895

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the samples/bpf subsystem related to a file descriptor leak within the run bpf prog function of the hbm program. Specifically, a file descriptor...

6.1AI score0.00135EPSS
Exploits0References9
CNVD
CNVD
added 2024/09/10 12:0 a.m.2 views

Huawei HarmonyOS and EMUI Resources Not Closed or Released Vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI are vulnerable to a resource no...

5.5CVSS6.7AI score0.0011EPSS
Exploits0References1
OSV
OSV
added 2024/09/04 3:15 a.m.3 views

CVE-2024-45445

Vulnerability of resources not being closed or released in the keystore module Impact: Successful exploitation of this vulnerability will affect availability...

5.5CVSS5.8AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/10/12 2:35 p.m.3 views

SUSE CVE-2023-42794

Incomplete Cleanup vulnerability in Apache Tomcat. The internal fork of Commons FileUpload packaged with Apache Tomcat 9.0.70 through 9.0.80 and 8.5.85 through 8.5.93 included an unreleased, in progress refactoring that exposed a potential denial of service on Windows if a web application opened ...

5.9CVSS8.5AI score0.01854EPSS
Exploits0References4
OSV
OSV
added 2023/02/07 7:15 p.m.22 views

CVE-2022-46285

A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be detected, leading to an infinite loop and resulting in a Denial of Service in the application linked to the library...

7.5CVSS3.1AI score
Exploits0References7
Prion
Prion
added 2023/02/07 7:15 p.m.25 views

Race condition

A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be detected, leading to an infinite loop and resulting in a Denial of Service in the application linked to the library...

5CVSS7.7AI score0.01273EPSS
Exploits2References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/07/01 8:0 p.m.5 views

CVE-2022-25896

This affects the package passport before 0.6.0. When a user logs in or logs out, the session is regenerated instead of being closed...

5.8CVSS6.3AI score0.00985EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/03/29 9:20 a.m.5 views

httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling

A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...

9.8CVSS7.1AI score0.28189EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/28 11:23 a.m.7 views

httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling

A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...

9.8CVSS7.1AI score0.28189EPSS
Exploits0References5
OSV
OSV
added 2021/03/31 6:15 p.m.3 views

CVE-2021-22999

On versions 15.0.x before 15.1.0 and 14.1.x before 14.1.4, the BIG-IP system provides an option to connect HTTP/2 clients to HTTP/1.x servers. When a client is slow to accept responses and it closes a connection prematurely, the BIG-IP system may indefinitely retain some streams unclosed. Note:...

7.5CVSS7.1AI score0.00961EPSS
Exploits0References1
OSV
OSV
added 2013/12/24 7:55 p.m.3 views

DEBIAN-CVE-2011-5268

connection.c in Bip before 0.8.9 does not properly close sockets, which allows remote attackers to cause a denial of service file descriptor consumption and crash via multiple failed SSL handshakes, a different vulnerability than CVE-2013-4550. NOTE: this issue was SPLIT from CVE-2013-4550 becaus...

4.3CVSS7AI score0.01501EPSS
Exploits0References1
OSV
OSV
added 2013/12/24 7:55 p.m.4 views

UBUNTU-CVE-2011-5268

connection.c in Bip before 0.8.9 does not properly close sockets, which allows remote attackers to cause a denial of service file descriptor consumption and crash via multiple failed SSL handshakes, a different vulnerability than CVE-2013-4550. NOTE: this issue was SPLIT from CVE-2013-4550 becaus...

4.3CVSS5.8AI score0.01501EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2009/05/18 8:28 p.m.8 views

OpenJDK remote LDAP Denial-Of-Service (6717680)

LdapCtx in the LDAP service in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.124 and earlier; and 1.4.219 and earlier does not close the connection when initialization fails, which allows remote attackers to cause ...

5CVSS6.1AI score0.03381EPSS
Exploits0References4
Rows per page
Query Builder