Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,456)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-2526 2Netapp Systemd Project 6Active Iq Unified Manager H300s FirmwareH410s Firmware+3 more Jun 17, 2026 Sep 9, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsS...Show more A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the DNSStream object, causing the use-after-free when the reference is still used later.Show less
CVE-2022-3134 2Debian Vim 2Debian Linux Vim Jun 17, 2026 Sep 6, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Use After Free in GitHub repository vim/vim prior to 9.0.0389.
CVE-2022-26453 1Google 1Android Jun 17, 2026 Sep 6, 2022 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In teei, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID:...Show more In teei, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06664675; Issue ID: ALPS06664675.Show less
CVE-2022-3099 3Debian FedoraprojectVim 3Debian Linux FedoraVim Jun 17, 2026 Sep 3, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Use After Free in GitHub repository vim/vim prior to 9.0.0360.
CVE-2022-22097 1Qualcomm 8Qcs410 Firmware Qcs610 FirmwareWcd9341 Firmware+5 more Jun 17, 2026 Sep 2, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in graphic driver due to use after free while calling multiple threads application to driver. in Snapdragon Consumer IOT
CVE-2021-35133 1Qualcomm 36Ar8035 Firmware Qca6174a FirmwareQca6391 Firmware+33 more Jun 17, 2026 Sep 2, 2022 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2022-2738 2Podman Project Redhat 3Enterprise Linux Server Enterprise Linux WorkstationPodman Jun 17, 2026 Sep 1, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously fixed via RHSA-2020:2117...Show more The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously fixed via RHSA-2020:2117. This issue could possibly be used to crash or cause potential code execution in Go applications that use the Go GPGME wrapper library, under certain conditions, during GPG signature verification.Show less
CVE-2020-27784 1Linux 1Linux Kernel Jun 17, 2026 Sep 1, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A vulnerability was found in the Linux kernel, where accessing a deallocated instance in printer_ioctl() printer_ioctl() tries to access of a printer_dev instance. However, use-after-free arises because it had been freed...Show more A vulnerability was found in the Linux kernel, where accessing a deallocated instance in printer_ioctl() printer_ioctl() tries to access of a printer_dev instance. However, use-after-free arises because it had been freed by gprinter_free().Show less
CVE-2022-36449 1Arm 3Bifrost Gpu Kernel Driver Midgard Gpu Kernel DriverValhall Gpu Kernel Driver Jun 17, 2026 Sep 1, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory, write a limited amount outside of buffer bounds, or to...Show more An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory, write a limited amount outside of buffer bounds, or to disclose details of memory mappings. This affects Midgard r4p0 through r32p0, Bifrost r0p0 through r38p0 and r39p0 before r38p1, and Valhall r19p0 through r38p0 and r39p0 before r38p1.Show less
CVE-2022-2896 1Measuresoft 1Scadapro Server Jun 17, 2026 Aug 31, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Measuresoft ScadaPro Server (All Versions) allows use after free while processing a specific project file.
CVE-2022-1976 1Linux 1Linux Kernel Jun 17, 2026 Aug 31, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 A flaw was found in the Linux kernel’s implementation of IO-URING. This flaw allows an attacker with local executable permission to create a string of requests that can cause a use-after-free flaw within the kernel. This...Show more A flaw was found in the Linux kernel’s implementation of IO-URING. This flaw allows an attacker with local executable permission to create a string of requests that can cause a use-after-free flaw within the kernel. This issue leads to memory corruption and possible privilege escalation.Show less
CVE-2022-1974 1Linux 1Linux Kernel Jun 17, 2026 Aug 31, 2022 N/A· v4 4.1 MEDIUM· v3 N/A· v2 A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAP_NET_ADMIN privilege to leak ke...Show more A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAP_NET_ADMIN privilege to leak kernel information.Show less
CVE-2022-1205 1Linux 1Linux Kernel Jun 17, 2026 Aug 31, 2022 N/A· v4 4.7 MEDIUM· v3 N/A· v2 A NULL pointer dereference flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.
CVE-2022-3037 2Fedoraproject Vim 2Fedora Vim Jun 17, 2026 Aug 30, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Use After Free in GitHub repository vim/vim prior to 9.0.0322.
CVE-2022-2961 3Fedoraproject LinuxNetapp 7Fedora H300s FirmwareH410c Firmware+4 more Jun 17, 2026 Aug 29, 2022 N/A· v4 7.0 HIGH· v3 N/A· v2 A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. This flaw allows a local...Show more A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. This flaw allows a local user to crash or potentially escalate their privileges on the system.Show less
CVE-2022-1204 3Debian FedoraprojectLinux 3Debian Linux FedoraLinux Kernel Jun 17, 2026 Aug 29, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A use-after-free flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.
CVE-2022-1199 3Linux NetappRedhat 8Active Iq Unified Manager Enterprise LinuxH300s Firmware+5 more Jun 17, 2026 Aug 29, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability...Show more A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability.Show less
CVE-2022-1198 2Linux Redhat 2Enterprise Linux Linux Kernel Jun 17, 2026 Aug 29, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A use-after-free vulnerabilitity was discovered in drivers/net/hamradio/6pack.c of linux that allows an attacker to crash linux kernel by simulating ax25 device using 6pack driver from user space.
CVE-2022-1184 4Canonical DebianLinux+1 more 4Debian Linux Enterprise LinuxLinux Kernel+1 more Jun 17, 2026 Aug 29, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel’s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service.
CVE-2022-1043 1Linux 1Linux Kernel Jun 17, 2026 Aug 29, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 A flaw was found in the Linux kernel’s io_uring implementation. This flaw allows an attacker with a local account to corrupt system memory, crash the system or escalate privileges.

Previous 1...212213214...373 Next