目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

CWE-401 在移除最后引用时对内存的释放不恰当(内存泄露) 类漏洞列表 215

CWE-401 在移除最后引用时对内存的释放不恰当(内存泄露) 类弱点 215 条 CVE 漏洞汇总,含 AI 中文分析。

CWE-401属于内存管理漏洞,指程序在内存使用完毕后未正确释放,导致资源无法回收。攻击者通常利用此缺陷通过反复分配内存耗尽系统资源,引发拒绝服务或导致程序崩溃。开发者应避免此类问题,需确保在内存生命周期结束时调用释放函数,并采用智能指针或自动内存管理工具,严格跟踪内存分配与释放状态,防止内存泄漏。

MITRE CWE 官方描述
CWE:CWE-401 Missing Release of Memory after Effective Lifetime 英文:The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
常见影响 (2)
AvailabilityDoS: Crash, Exit, or Restart, DoS: Instability, DoS: Resource Consumption (CPU), DoS: Resource Consumption (Memory)
Most memory leaks result in general product reliability problems, but if an attacker can intentionally trigger a memory leak, the attacker might be able to launch a denial of service attack (by crashing or hanging the program) or take advantage of other unexpected program behavior resulting from a l…
OtherReduce Performance
缓解措施 (3)
ImplementationChoose a language or tool that provides automatic memory management, or makes manual memory management less error-prone. For example, glibc in Linux provides protection against free of invalid pointers. When using Xcode to target OS X or iOS, enable automatic reference counting (ARC) [REF-391]. To help correctly and consistently manage memory when programming in C++, consider using a smart pointer…
Architecture and DesignUse an abstraction library to abstract away risky APIs. Not a complete solution.
Architecture and Design, Build and CompilationConsider using the Boehm-Demers-Weiser garbage collector (bdwgc), which can help avoid leaks.
Effectiveness: Moderate
代码示例 (1)
The following C function leaks a block of allocated memory if the call to read() does not return the expected number of bytes:
char* getBlock(int fd) { char* buf = (char*) malloc(BLOCK_SIZE); if (!buf) { return NULL; } if (read(fd, buf, BLOCK_SIZE) != BLOCK_SIZE) { return NULL; } return buf; }
Bad · C
CVE ID标题CVSS风险等级Published
CVE-2026-43506 Prosody 拒绝服务漏洞(<13.0.5/0.12.6) — Prosody 5.3 Medium2026-05-01
CVE-2026-7379 Wireshark 释放内存后无效生命周期漏洞 — Wireshark 5.5 Medium2026-04-30
CVE-2026-40336 libgphoto2 安全漏洞 — libgphoto2 2.4 Low2026-04-17
CVE-2026-33775 Juniper Networks Junos OS 安全漏洞 — Junos OS 6.5 Medium2026-04-09
CVE-2026-33782 Juniper Networks Junos OS MX 安全漏洞 — Junos OS 6.5 Medium2026-04-09
CVE-2026-33780 Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 安全漏洞 — Junos OS 6.5 Medium2026-04-09
CVE-2026-34052 LTI JupyterHub Authenticator 安全漏洞 — ltiauthenticator 5.9 Medium2026-04-03
CVE-2026-3650 Grassroots DICOM 安全漏洞 — Grassroots DICOM (GDCM) 7.5 High2026-03-26
CVE-2026-4247 FreeBSD 安全漏洞 — FreeBSD 7.5 -2026-03-26
CVE-2026-20012 Cisco多款产品 安全漏洞 — IOS 8.6 High2026-03-25
CVE-2026-33852 Android ImageMagick 安全漏洞 — Android-ImageMagick7 7.5 High2026-03-24
CVE-2026-33856 Android ImageMagick 安全漏洞 — Android-ImageMagick7 7.5 High2026-03-24
CVE-2026-32874 UltraJSON 安全漏洞 — ultrajson 7.5 High2026-03-20
CVE-2026-30873 OpenWrt 安全漏洞 — openwrt 7.5 -2026-03-19
CVE-2026-0639 OpenHarmony 安全漏洞 — OpenHarmony 3.3 Low2026-03-16
CVE-2026-20021 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 4.3 Medium2026-03-04
CVE-2026-20015 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 5.8 Medium2026-03-04
CVE-2026-20014 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 7.7 High2026-03-04
CVE-2026-20013 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 5.8 Medium2026-03-04
CVE-2026-20106 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 5.3 Medium2026-03-04
CVE-2026-20105 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 7.7 High2026-03-04
CVE-2026-25988 ImageMagick 安全漏洞 — ImageMagick 5.3 Medium2026-02-24
CVE-2026-25969 ImageMagick 安全漏洞 — ImageMagick 5.3 Medium2026-02-24
CVE-2026-25796 ImageMagick 安全漏洞 — ImageMagick 5.3 Medium2026-02-24
CVE-2026-25638 ImageMagick 安全漏洞 — ImageMagick 5.3 Medium2026-02-24
CVE-2026-25637 ImageMagick 安全漏洞 — ImageMagick 5.3 Medium2026-02-24
CVE-2026-21438 webtransport-go 安全漏洞 — webtransport-go 5.3 Medium2026-02-12
CVE-2025-15572 Wasm3 安全漏洞 — wasm3 3.3 Low2026-02-10
CVE-2025-47397 Qualcomm Chipsets 安全漏洞 — Snapdragon 7.8 High2026-02-02
CVE-2026-1757 libxml2 安全漏洞 — Red Hat Hardened Images 6.2 Medium2026-02-02

CWE-401(在移除最后引用时对内存的释放不恰当(内存泄露)) 是常见的弱点类别,本平台收录该类弱点关联的 215 条 CVE 漏洞。