Description
In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths.
Remediation
References
Related Vulnerabilities
MySQL CVE-2018-2600 Vulnerability (CVE-2018-2600)
WordPress Plugin BackupBuddy Arbitrary File Download (8.7.4.1)
Craft CMS Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2022-29933)
Microsoft SQL Server Other Vulnerability (CVE-2000-1084)
WordPress Plugin WP w3all phpBB Multiple Unspecified Vulnerabilities (1.6.3)