CWE-415
781 CVEs • Abstraction: Variant • Likelihood of Exploit: High
Double Free
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
CVEs (781)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
2Debian Linux2Debian Linux Linux KernelMay 13, 2026 Mar 7, 2017 N/A· v4 7.0 HIGH· v3 6.9 MEDIUM· v2 Race condition in drivers/tty/n_hdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service (double free) by setting the HDLC line discipline. |
The plist_free_data function in plist.c in libplist allows attackers to cause a denial of service (crash) via vectors involving an integer node that is treated as a PLIST_KEY and then triggers an invalid free. |
net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service (invalid unlock and double...Show more |
2Debian Linux2Debian Linux Linux KernelMay 13, 2026 Feb 18, 2017 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cau...Show more |
3Fedoraproject Jasper ProjectOpensuse3Fedora JasperOpensuseMay 13, 2026 Feb 15, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Double free vulnerability in the mem_close function in jas_stream.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the...Show more |
An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an attacker to modify memo...Show more |
Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values. |
Multiple use-after-free and double-free vulnerabilities in gifcolor.c in GIFLIB 5.1.2 have unspecified impact and attack vectors. |
Race condition in the netlink_dump function in net/netlink/af_netlink.c in the Linux kernel before 4.6.3 allows local users to cause a denial of service (double free) or possibly have unspecified other impact via a craft...Show more |
Double free vulnerability in the sg_common_write function in drivers/scsi/sg.c in the Linux kernel before 4.4 allows local users to gain privileges or cause a denial of service (memory corruption and system crash) by det...Show more |
4Canonical DebianFedoraproject+1 more4Debian Linux FedoraFontconfig+1 moreMay 6, 2026 Aug 13, 2016 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 fontconfig before 2.12.1 does not validate offsets, which allows local users to trigger arbitrary free calls and consequently conduct double free attacks and execute arbitrary code via a crafted cache file. |
4Debian OpensusePhp+1 more7Debian Linux LeapLinux Enterprise Debuginfo+4 moreMay 6, 2026 Aug 7, 2016 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Double free vulnerability in the php_wddx_process_data function in wddx.c in the WDDX extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 allows remote attackers to cause a denial of service (applic...Show more |
Double free vulnerability in the _php_mb_regex_ereg_replace_exec function in php_mbregex.c in the mbstring extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 allows remote attackers to execute arbi...Show more |
Double free vulnerability in the SplDoublyLinkedList::offsetSet function in ext/spl/spl_dllist.c in PHP 7.x before 7.0.6 allows remote attackers to execute arbitrary code via a crafted index. |
Double free vulnerability in the format printer in PHP 7.x before 7.0.1 allows remote attackers to have an unspecified impact by triggering an error. |
1Microsoft 3Windows 8.1 Windows Rt 8.1Windows Server 2012May 6, 2026 Feb 11, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Double free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1 allows local users to gain privileges via a crafted application, aka "Windows Cursor...Show more |
1Adobe 2Flash Player Flash Player Desktop RuntimeMay 6, 2026 Jan 28, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 Double free vulnerability in Adobe Flash Player before 13.0.0.264 and 14.x through 16.x before 16.0.0.296 on Windows and OS X and before 11.2.202.440 on Linux allows attackers to execute arbitrary code via unspecified ve...Show more |
3Debian MitRedhat6Debian Linux Enterprise Linux DesktopEnterprise Linux Hpc Node+3 moreMay 6, 2026 Aug 14, 2014 N/A· v4 N/A· v3 7.6 HIGH· v2 Double free vulnerability in the init_ctx_reselect function in the SPNEGO initiator in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.10.x through 1.12.x before 1.12.2 allows remote attackers to cause a d...Show more |
1Microsoft 9Windows 7 Windows 8Windows 8.1+6 moreMay 6, 2026 Jul 8, 2014 N/A· v4 N/A· v3 7.2 HIGH· v2 Double free vulnerability in the Ancillary Function Driver (AFD) in afd.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8...Show more |
1Microsoft 8Windows 7 Windows 8Windows 8.1+5 moreMay 6, 2026 Mar 12, 2014 N/A· v4 N/A· v3 9.3 HIGH· v2 Double free vulnerability in qedit.dll in DirectShow in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows...Show more |