CVE-2018-13420

Google gperftools 2.7 has a memory leak in malloc_extension.cc, related to MallocExtension::Register and InitModule. NOTE: the software maintainer indicates that this is not a bug; it is only a false-positive report from the LeakSanitizer program
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
VendorProductVersion
gperftools_projectgperftools
2.7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
google-perftools
bullseye
unimportant
bookworm
unimportant
sid
unimportant
trixie
unimportant
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
google-perftools
bionic
ignored
artful
ignored
xenial
ignored
trusty
dne
Common Weakness Enumeration
References
https://github.com/gperftools/gperftools/issues/1013
https://github.com/gperftools/gperftools/issues/1013