CWE-416
7,752 CVEs • Abstraction: Variant • Likelihood of Exploit: High
Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
CVEs (7,752)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
openGauss 在处理带 NLS 参数的 to_timestamp 调用时,to_timestamp_with_fmt_nls() 会将 nls_fmt_str 保存到 u_sess->parser_cxt.nls_fmt_str。在 seqscan + sort 执行路径下,该字符串原本被分配在 SeqScan 的表达式上下文中;当 SeqScan 完成后,该内存上下文会被 reset,但后续结果输出阶段 timestamp_ou...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may result in the disclosure of pr...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to memory...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected Safari c...Show more |
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to memory...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 5.3 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious web extension may be able to cause an unexpected p...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process...Show more |
1Apple 4Ipados Iphone OsMacos+1 moreJun 30, 2026 Jun 29, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process...Show more |
2Kernel Redhat4Enterprise Linux Hardened ImagesOpenshift Container Platform+1 moreJul 8, 2026 Jun 29, 2026 N/A· v4 5.3 MEDIUM· v3 N/A· v2 A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically alloca...Show more |
Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a stack-allocated state object (struct getaddrinfo_state ai_state) as the user_data of an asynchronous DNS reso...Show more |
Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping remained valid. The freed memory could then be reused elsewhere while still accessible through the stale mappi...Show more |