Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,456)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-1444 1Radare 1Radare2 Jun 17, 2026 Apr 23, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 heap-use-after-free in GitHub repository radareorg/radare2 prior to 5.7.0. This vulnerability is capable of inducing denial of service.
CVE-2021-42779 3Fedoraproject Opensc ProjectRedhat 3Enterprise Linux FedoraOpensc Jun 17, 2026 Apr 18, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid.
CVE-2021-44497 1Fisglobal 1Gt.m Jun 17, 2026 Apr 15, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using crafted input, can cause the bounds of a for loop to be miscalculated, which leads to a use after free condition a pointer is...Show more An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using crafted input, can cause the bounds of a for loop to be miscalculated, which leads to a use after free condition a pointer is pushed into previously free memory by the loop.Show less
CVE-2022-28042 3Debian FedoraprojectNothings 3Debian Linux FedoraStb Image.h Jun 17, 2026 Apr 15, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.
CVE-2022-27007 1F5 1Njs Jun 17, 2026 Apr 14, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 nginx njs 0.7.2 is affected suffers from Use-after-free in njs_function_frame_alloc() when it try to invoke from a restored frame saved with njs_function_frame_save().
CVE-2022-27457 1Mariadb 1Mariadb Jun 17, 2026 Apr 14, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_mb_wc_latin1 at /strings/ctype-latin1.c.
CVE-2022-27456 2Debian Mariadb 2Debian Linux Mariadb Jun 17, 2026 Apr 14, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sql_type.cc.
CVE-2022-27455 1Mariadb 1Mariadb Jun 17, 2026 Apr 14, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_wildcmp_8bit_impl at /strings/ctype-simple.c.
CVE-2022-27447 2Debian Mariadb 2Debian Linux Mariadb Jun 17, 2026 Apr 14, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 MariaDB Server v10.9 and below was discovered to contain a use-after-free via the component Binary_string::free_buffer() at /sql/sql_string.h.
CVE-2022-1280 2Linux Redhat 2Enterprise Linux Linux Kernel Jun 17, 2026 Apr 13, 2022 N/A· v4 6.3 MEDIUM· v3 3.3 LOW· v2 A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem. This flaw allows a local user privilege attacker to cause a denial of service (DoS) or...Show more A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem. This flaw allows a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak.Show less
CVE-2022-27383 2Debian Mariadb 2Debian Linux Mariadb Jun 17, 2026 Apr 12, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component my_strcasecmp_8bit, which is exploited via specially crafted SQL statements.
CVE-2022-27377 2Debian Mariadb 2Debian Linux Mariadb Jun 17, 2026 Apr 12, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component Item_func_in::cleanup(), which is exploited via specially crafted SQL statements.
CVE-2022-27376 2Debian Mariadb 2Debian Linux Mariadb Jun 17, 2026 Apr 12, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 MariaDB Server v10.6.5 and below was discovered to contain an use-after-free in the component Item_args::walk_arg, which is exploited via specially crafted SQL statements.
CVE-2022-24070 4Apache AppleDebian+1 more 4Debian Linux FedoraMacos+1 more Jun 17, 2026 Apr 12, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn se...Show more Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (inclusive). Servers that do not use mod_dav_svn are not affected.Show less
CVE-2021-39812 1Google 1Android Jun 17, 2026 Apr 12, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In TBD of TBD, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitat...Show more In TBD of TBD, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-205522359References: N/AShow less
CVE-2021-39803 1Google 1Android Jun 17, 2026 Apr 12, 2022 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In ~Impl of C2AllocatorIon.cpp, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed...Show more In ~Impl of C2AllocatorIon.cpp, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-193790350Show less
CVE-2021-39801 1Google 1Android Jun 17, 2026 Apr 12, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In ion_ioctl of ion-ioctl.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...Show more In ion_ioctl of ion-ioctl.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-209791720References: Upstream kernelShow less
CVE-2021-39800 1Google 1Android Jun 17, 2026 Apr 12, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 In ion_ioctl of ion-ioctl.c, there is a possible way to leak kernel head data due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is n...Show more In ion_ioctl of ion-ioctl.c, there is a possible way to leak kernel head data due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-208277166References: Upstream kernelShow less
CVE-2021-0707 1Google 1Android Jun 17, 2026 Apr 12, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee...Show more In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-155756045References: Upstream kernelShow less
CVE-2022-27834 1Google 1Android Jun 17, 2026 Apr 11, 2022 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr-2022 Release 1 allows attackers to perform malicious actions.

Previous 1...226227228...373 Next