Double Free

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

CVEs (781)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-15316 1Huawei 2Mate 9 Firmware Mate 9 Pro Firmware May 13, 2026 Dec 22, 2017 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huawei smart phones with software before LON-AL00B 8.0.0.334(C00) has a memory double free vulnerability. An attac...Show more The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huawei smart phones with software before LON-AL00B 8.0.0.334(C00) has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can call special API, which triggers double free and causes a system crash or arbitrary code execution.Show less
CVE-2017-8141 1Huawei 1P10 Plus Firmware May 13, 2026 Nov 22, 2017 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 The Touch Panel (TP) driver in P10 Plus smart phones with software versions earlier than VKY-AL00C00B153 has a memory double free vulnerability. An attacker with the root privilege of the Android system tricks a user int...Show more The Touch Panel (TP) driver in P10 Plus smart phones with software versions earlier than VKY-AL00C00B153 has a memory double free vulnerability. An attacker with the root privilege of the Android system tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution.Show less
CVE-2017-8140 1Huawei 1P9 Plus Firmware May 13, 2026 Nov 22, 2017 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the appl...Show more The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution.Show less
CVE-2017-6166 1F5 11Big Ip Afm Big Ip AnalyticsBig Ip Apm+8 more May 13, 2026 Nov 22, 2017 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing fragmented packets. This vu...Show more In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing fragmented packets. This vulnerability affects TMM through a virtual server configured with a FastL4 profile. Traffic processing is disrupted while TMM restarts. If the affected BIG-IP system is configured as part of a device group, it will trigger a failover to the peer device.Show less
CVE-2017-1000232 1Nlnetlabs 1Ldns May 13, 2026 Nov 17, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors.
CVE-2017-1000231 1Nlnetlabs 1Ldns May 13, 2026 Nov 17, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors.
CVE-2017-11032 1Google 1Android May 13, 2026 Nov 16, 2017 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a double free can occur when kmalloc fails to allocate memory for pointers resp/req in the service-locator d...Show more In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a double free can occur when kmalloc fails to allocate memory for pointers resp/req in the service-locator driver function service_locator_send_msg().Show less
CVE-2017-16820 1Collectd 1Collectd May 13, 2026 Nov 14, 2017 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 The csnmp_read_table function in snmp.c in the SNMP plugin in collectd before 5.6.3 is susceptible to a double free in a certain error case, which could lead to a crash (or potentially have other impact).
CVE-2017-15186 1Ffmpeg 1Ffmpeg May 13, 2026 Oct 24, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial of service via a crafted AVI file.
CVE-2015-5177 2Debian Openslp 2Debian Linux Openslp May 13, 2026 Oct 22, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Double free vulnerability in the SLPDKnownDAAdd function in slpd/slpd_knownda.c in OpenSLP 1.2.1 allows remote attackers to cause a denial of service (crash) via a crafted package.
CVE-2015-1239 3Debian GoogleUclouvain 3Debian Linux OpenjpegPdfium May 13, 2026 Oct 18, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Double free vulnerability in the j2k_read_ppm_v3 function in OpenJPEG before r2997, as used in PDFium in Google Chrome, allows remote attackers to cause a denial of service (process crash) via a crafted PDF.
CVE-2017-14952 1Icu Project 1International Components For Unicode May 13, 2026 Oct 16, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up functi...Show more Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue.Show less
CVE-2017-15364 1Ccsv Project 1Ccsv May 13, 2026 Oct 15, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The foreach function in ext/ccsv.c in Ccsv 1.1.0 allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact via a crafted file. NOTE: This has been...Show more The foreach function in ext/ccsv.c in Ccsv 1.1.0 allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact via a crafted file. NOTE: This has been disputed and it is argued that this is not present in version 1.1.0.Show less
CVE-2017-9687 1Google 1Android May 13, 2026 Oct 10, 2017 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, two concurrent threads/processes can write the value of "0" to the debugfs file that controls ipa ipc log wh...Show more In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, two concurrent threads/processes can write the value of "0" to the debugfs file that controls ipa ipc log which will lead to the double-free in ipc_log_context_destroy(). Another issue is the Use-After-Free which can happen due to the race condition when the ipc log is deallocated via the debugfs call during a log print.Show less
CVE-2017-9686 1Google 1Android May 13, 2026 Oct 10, 2017 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a possible double free/use after free in the SPS driver when debugfs logging is used.
CVE-2017-11462 2Fedoraproject Mit 2Fedora Kerberos 5 May 13, 2026 Sep 13, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Double free vulnerability in MIT Kerberos 5 (aka krb5) allows attackers to have unspecified impact via vectors involving automatic deletion of security contexts on error.
CVE-2017-6362 4Canonical DebianFedoraproject+1 more 4Debian Linux FedoraLibgd+1 more May 13, 2026 Sep 7, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors.
CVE-2015-7700 1Pngcrush Project 1Pngcrush May 13, 2026 Aug 31, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows attackers to have unspecified impact via unknown vectors.
CVE-2017-10950 1Bitdefender 1Total Security May 13, 2026 Aug 29, 2017 N/A· v4 7.0 HIGH· v3 6.9 MEDIUM· v2 This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Bitdefender Total Security 21.0.24.62. An attacker must first obtain the ability to execute low-privileged code on the ta...Show more This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Bitdefender Total Security 21.0.24.62. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within processing of the 0x8000E038 IOCTL in the bdfwfpf driver. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker could leverage this vulnerability to execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-4776.Show less
CVE-2017-12925 1Libfpx Project 1Libfpx May 13, 2026 Aug 28, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Double free vulnerability in DfFromLB in docfile.cxx in libfpx 1.3.1_p6 allows remote attackers to cause a denial of service via a crafted fpx image.

Previous 1...353637...40 Next