Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,280)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-12133 1Gnu 1Glibc May 13, 2026 Sep 7, 2017 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 Use-after-free vulnerability in the clntudp_call function in sunrpc/clnt_udp.c in the GNU C Library (aka glibc or libc6) before 2.26 allows remote attackers to have unspecified impact via vectors related to error path.
CVE-2017-2821 1Lexmark 1Perceptive Document Filters May 13, 2026 Sep 5, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An exploitable use-after-free exists in the PDF parsing functionality of Lexmark Perspective Document Filters 11.3.0.2400 and 11.4.0.2452. A crafted PDF document can lead to a use-after-free resulting in direct code exec...Show more An exploitable use-after-free exists in the PDF parsing functionality of Lexmark Perspective Document Filters 11.3.0.2400 and 11.4.0.2452. A crafted PDF document can lead to a use-after-free resulting in direct code execution.Show less
CVE-2017-2808 1Ledger Cli 1Ledger May 13, 2026 Sep 5, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 An exploitable use-after-free vulnerability exists in the account parsing component of the Ledger-CLI 3.1.1. A specially crafted ledger file can cause a use-after-free vulnerability resulting in arbitrary code execution....Show more An exploitable use-after-free vulnerability exists in the account parsing component of the Ledger-CLI 3.1.1. A specially crafted ledger file can cause a use-after-free vulnerability resulting in arbitrary code execution. An attacker can convince a user to load a journal file to trigger this vulnerability.Show less
CVE-2017-14103 1Graphicsmagick 1Graphicsmagick May 13, 2026 Sep 1, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attack...Show more The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-11403.Show less
CVE-2017-13711 2Debian Qemu 2Debian Linux Qemu May 13, 2026 Sep 1, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU (aka Quick Emulator) allows attackers to cause a denial of service (QEMU instance crash) by leveraging failure to properly clear ifq_so from p...Show more Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU (aka Quick Emulator) allows attackers to cause a denial of service (QEMU instance crash) by leveraging failure to properly clear ifq_so from pending packets.Show less
CVE-2017-13741 1Liblouis 1Liblouis May 13, 2026 Aug 29, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 There is a use-after-free in the function compileBrailleIndicator() in compileTranslationTable.c in Liblouis 3.2.0 that will lead to a remote denial of service attack.
CVE-2017-13737 2Debian Graphicsmagick 2Debian Linux Graphicsmagick May 13, 2026 Aug 29, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 There is an invalid free in the MagickFree function in magick/memory.c in GraphicsMagick 1.3.26 that will lead to a remote denial of service attack.
CVE-2017-12877 3Canonical DebianImagemagick 3Debian Linux ImagemagickUbuntu Linux May 13, 2026 Aug 28, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Use-after-free vulnerability in the DestroyImage function in image.c in ImageMagick before 7.0.6-6 allows remote attackers to cause a denial of service via a crafted file.
CVE-2017-10661 3Debian LinuxRedhat 6Debian Linux Enterprise LinuxEnterprise Linux Aus+3 more May 13, 2026 Aug 19, 2017 N/A· v4 7.0 HIGH· v3 7.6 HIGH· v2 Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that le...Show more Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel queueing.Show less
CVE-2017-9685 1Google 1Android May 13, 2026 Aug 18, 2017 N/A· v4 8.1 HIGH· v3 9.3 HIGH· v2 In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in a WLAN driver can lead to a Use After Free condition.
CVE-2017-9684 1Google 1Android May 13, 2026 Aug 18, 2017 N/A· v4 7.0 HIGH· v3 7.6 HIGH· v2 In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in a USB driver can lead to a Use After Free condition.
CVE-2017-7364 1Google 1Android May 13, 2026 Aug 18, 2017 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In all Qualcomm products with Android releases from CAF using the Linux kernel, in function __mdss_fb_copy_destscaler_data(), variable ds_data[i].scale may still point to a user-provided address (which could point to arb...Show more In all Qualcomm products with Android releases from CAF using the Linux kernel, in function __mdss_fb_copy_destscaler_data(), variable ds_data[i].scale may still point to a user-provided address (which could point to arbitrary kernel address), so on an error condition, this user-provided address will be freed (arbitrary free), and continued operation could result in use after free condition.Show less
CVE-2017-8270 1Google 1Android May 13, 2026 Aug 18, 2017 N/A· v4 7.0 HIGH· v3 5.1 MEDIUM· v2 In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition exists in a driver potentially leading to a use-after-free condition.
CVE-2017-8266 1Google 1Android May 13, 2026 Aug 18, 2017 N/A· v4 7.0 HIGH· v3 5.1 MEDIUM· v2 In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition exists in a video driver potentially leading to a use-after-free condition.
CVE-2017-8262 1Google 1Android May 13, 2026 Aug 18, 2017 N/A· v4 7.0 HIGH· v3 7.6 HIGH· v2 In all Qualcomm products with Android releases from CAF using the Linux kernel, in some memory allocation and free functions, a race condition can potentially occur leading to a Use After Free condition.
CVE-2016-10385 1Google 1Android May 13, 2026 Aug 18, 2017 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In all Qualcomm products with Android releases from CAF using the Linux kernel, a use-after-free vulnerability exists in IMS RCS.
CVE-2017-12936 2Debian Graphicsmagick 2Debian Linux Graphicsmagick May 13, 2026 Aug 18, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The ReadWMFImage function in coders/wmf.c in GraphicsMagick 1.3.26 has a use-after-free issue for data associated with exception reporting.
CVE-2017-12934 1Php 1Php May 13, 2026 Aug 18, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 ext/standard/var_unserializer.re in PHP 7.0.x before 7.0.21 and 7.1.x before 7.1.7 is prone to a heap use after free while unserializing untrusted data, related to the zval_get_type function in Zend/zend_types.h. Exploit...Show more ext/standard/var_unserializer.re in PHP 7.0.x before 7.0.21 and 7.1.x before 7.1.7 is prone to a heap use after free while unserializing untrusted data, related to the zval_get_type function in Zend/zend_types.h. Exploitation of this issue can have an unspecified impact on the integrity of PHP.Show less
CVE-2017-12932 1Php 1Php May 13, 2026 Aug 18, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 ext/standard/var_unserializer.re in PHP 7.0.x through 7.0.22 and 7.1.x through 7.1.8 is prone to a heap use after free while unserializing untrusted data, related to improper use of the hash API for key deletion in a sit...Show more ext/standard/var_unserializer.re in PHP 7.0.x through 7.0.22 and 7.1.x through 7.1.8 is prone to a heap use after free while unserializing untrusted data, related to improper use of the hash API for key deletion in a situation with an invalid array size. Exploitation of this issue can have an unspecified impact on the integrity of PHP.Show less
CVE-2017-3120 1Adobe 4Acrobat Acrobat DcAcrobat Reader Dc+1 more May 13, 2026 Aug 11, 2017 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA parsing engine when handling cer...Show more Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA parsing engine when handling certain types of internal instructions. Successful exploitation could lead to arbitrary code execution.Show less

Previous 1...332333334...364 Next