Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,456)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-46142 4Debian FedoraprojectOpensuse+1 more 7Backports Debian LinuxExtra Packages For Enterprise Linux+4 more Nov 21, 2024 Jan 6, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in uriNormalizeSyntax.
CVE-2021-46141 4Debian FedoraprojectOpensuse+1 more 7Backports Debian LinuxExtra Packages For Enterprise Linux+4 more Nov 21, 2024 Jan 6, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in uriFreeUriMembers and uriMakeOwner.
CVE-2021-41043 1Tcpdump 1Tcpslice Nov 21, 2024 Jan 5, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Use after free in tcpslice triggers AddressSanitizer, no other confirmed impact.
CVE-2021-30337 1Qualcomm 210Apq8009 Firmware Apq8009w FirmwareApq8017 Firmware+207 more May 22, 2025 Jan 3, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon I...Show more Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and NetworkingShow less
CVE-2021-30262 1Qualcomm 105Apq8009w Firmware Aqt1000 FirmwareAr8031 Firmware+102 more Nov 21, 2024 Jan 3, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Improper validation of a socket state when socket events are being sent to clients can lead to invalid access of memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon...Show more Improper validation of a socket state when socket events are being sent to clients can lead to invalid access of memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesShow less
CVE-2021-45944 2Artifex Debian 2Debian Linux Ghostscript Nov 21, 2024 Jan 1, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from sampled_data_continue and interp).
CVE-2021-4192 4Apple DebianFedoraproject+1 more 5Debian Linux FedoraMac Os X+2 more Nov 21, 2024 Dec 31, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 vim is vulnerable to Use After Free
CVE-2021-4187 3Apple FedoraprojectVim 4Fedora Mac Os XMacos+1 more Nov 3, 2025 Dec 29, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 vim is vulnerable to Use After Free
CVE-2021-4173 3Apple FedoraprojectVim 4Fedora Mac Os XMacos+1 more Nov 3, 2025 Dec 27, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 vim is vulnerable to Use After Free
CVE-2021-45702 1Linuxfoundation 1Tremor Script Nov 21, 2024 Dec 27, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the tremor-script crate before 0.11.6 for Rust. A merge operation may result in a use-after-free.
CVE-2021-45701 1Linuxfoundation 1Tremor Script Nov 21, 2024 Dec 27, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in the tremor-script crate before 0.11.6 for Rust. A patch operation may result in a use-after-free.
CVE-2018-25028 1Libpulse Binding Project 1Libpulse Binding Nov 21, 2024 Dec 27, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. get_context can cause a use-after-free.
CVE-2018-25027 1Libpulse Binding Project 1Libpulse Binding Nov 21, 2024 Dec 27, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. get_format_info can cause a use-after-free.
CVE-2021-45720 1Lru Project 1Lru Nov 21, 2024 Dec 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the lru crate before 0.7.1 for Rust. The iterators have a use-after-free, as demonstrated by an access after a pop operation.
CVE-2021-45719 1Rusqlite Project 1Rusqlite Nov 21, 2024 Dec 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. update_hook has a use-after-free.
CVE-2021-45718 1Rusqlite Project 1Rusqlite Nov 21, 2024 Dec 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. rollback_hook has a use-after-free.
CVE-2021-45717 1Rusqlite Project 1Rusqlite Nov 21, 2024 Dec 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. commit_hook has a use-after-free.
CVE-2021-45716 1Rusqlite Project 1Rusqlite Nov 21, 2024 Dec 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_collation has a use-after-free.
CVE-2021-45715 1Rusqlite Project 1Rusqlite Nov 21, 2024 Dec 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_window_function has a use-after-free.
CVE-2021-45714 1Rusqlite Project 1Rusqlite Nov 21, 2024 Dec 26, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_aggregate_function has a use-after-free.

Previous 1...238239240...373 Next