Description
In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Shop Multiple Vulnerabilities (3.4.3.18)
Liferay DXP URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-25609)
WordPress Plugin All-in-One Event Calendar Multiple Vulnerabilities (1.9)
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3197)