CVE-2018-13420

HIGH

Gperftools - Resource Leak

Title source: rule

Description

Google gperftools 2.7 has a memory leak in malloc_extension.cc, related to MallocExtension::Register and InitModule. NOTE: the software maintainer indicates that this is not a bug; it is only a false-positive report from the LeakSanitizer program

References (1)

[Third Party Advisory] https://github.com/gperftools/gperftools/issues/1013

Scores

CVSS v3 7.5

EPSS 0.0033

EPSS Percentile 55.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-772

Status published

Affected Products (1)

gperftools_project/gperftools

Timeline

Published Jul 07, 2018

Tracked Since Feb 18, 2026