PT-2017-13012 · Symantec · Symantec Encryption Desktop

Published

2017-10-23

Updated

2019-10-03

CVE-2017-13682

CVSS v3.1

5.7

Medium

Vector

AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Symantec Encryption Desktop versions prior to 10.4.1 MP2HF1

Description A kernel memory leak occurs due to incorrect memory allocation management, where memory that is no longer needed is not released. This issue can happen when an object is stored in memory but cannot be accessed by the running code.

Recommendations For versions prior to 10.4.1 MP2HF1, update to version 10.4.1 MP2HF1 or later to resolve the issue.

Fix

Missing Release of Resource after Effective Lifetime

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-772

Related Identifiers

CVE-2017-13682

Affected Products

Symantec Encryption Desktop

PT-2017-13012 · Symantec · Symantec Encryption Desktop

CVE-2017-13682

Weakness Enumeration

Related Identifiers

Affected Products

References · 4