Missing Release of Memory after Effective Lifetime Affecting io.opentracing.contrib:opentracing-interceptors package, versions [,0.1.0)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
- Snyk ID SNYK-JAVA-IOOPENTRACINGCONTRIB-1048307
- published 4 Dec 2020
- disclosed 4 Dec 2020
- credit Unknown
How to fix?
io.opentracing.contrib:opentracing-interceptors to version 0.1.0 or higher.
io.opentracing.contrib:opentracing-interceptors is a library that provides a Jakarta EE Interceptor that will add a new Span for any @Traced-annotated method.
Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime when repeatedly resolving dependent beans.