LiteSpeed Web Server Missing Release of Memory after Effective Lifetime Vulnerability - CVE-2025-54939 - Vulnerability Database

LiteSpeed Web Server Missing Release of Memory after Effective Lifetime Vulnerability - CVE-2025-54939

High

Reference: CVE-2025-54939

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-54939

Title: LiteSpeed Web Server Missing Release of Memory after Effective Lifetime Vulnerability

Overview:

LiteSpeed QUIC (LSQUIC) Library before 4.3.1 has an lsquic_engine_packet_in memory leak.