Filtered by CWE-416
Filtered by vendor Subscriptions
Total 6251 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2016-10906 1 Linux 1 Linux Kernel 2024-11-21 7.0 High
An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean.
CVE-2016-10905 1 Linux 1 Linux Kernel 2024-11-21 7.8 High
An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2_clear_rgrpd and read_rindex_entry.
CVE-2016-1000006 1 Facebook 1 Hhvm 2024-11-21 9.8 Critical
hhvm before 3.12.11 has a use-after-free in the serialize_memoize_param() and ResourceBundle::__construct() functions.
CVE-2015-1606 2 Debian, Gnupg 2 Debian Linux, Gnupg 2024-11-21 5.5 Medium
The keyring DB in GnuPG before 2.1.2 does not properly handle invalid packets, which allows remote attackers to cause a denial of service (invalid read and use-after-free) via a crafted keyring file.
CVE-2014-9482 1 Libdwarf Project 1 Libdwarf 2024-11-21 6.5 Medium
Use-after-free vulnerability in dwarfdump in libdwarf 20130126 through 20140805 might allow remote attackers to cause a denial of service (program crash) via a crafted ELF file.
CVE-2014-3622 1 Php 1 Php 2024-11-21 9.8 Critical
Use-after-free vulnerability in the add_post_var function in the Posthandler component in PHP 5.6.x before 5.6.1 might allow remote attackers to execute arbitrary code by leveraging a third-party filter extension that accesses a certain ksep value.
CVE-2014-3471 1 Qemu 1 Qemu 2024-11-21 N/A
Use-after-free vulnerability in hw/pci/pcie.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (QEMU instance crash) via hotplug and hotunplug operations of Virtio block devices.
CVE-2014-10046 1 Qualcomm 30 Mdm9615, Mdm9615 Firmware, Mdm9625 and 27 more 2024-11-21 N/A
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, MDM9635M, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 800, SD 808, and SD 810, use after free vulnerability when the PDN throttle info block is freed without clearing the corresponding active timer.
CVE-2013-2830 1 Sumatrapdfreader 1 Sumatrapdf 2024-11-21 7.8 High
Use-after-free vulnerability in SumatraPDF Reader 2.x before 2.2.1 allows remote attackers to execute arbitrary code via a crafted PDF file.
CVE-2011-2353 1 Google 1 Blink 2024-11-21 6.5 Medium
Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument function.
CVE-2011-2334 1 Google 1 Blink 2024-11-21 6.5 Medium
Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen removing elements with reflections.
CVE-2024-33023 1 Qualcomm 317 Ar8035, Ar8035 Firmware, Csra6620 and 314 more 2024-11-20 8.4 High
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
CVE-2024-33028 1 Qualcomm 279 Ar8035, Ar8035 Firmware, Csra6620 and 276 more 2024-11-20 8.4 High
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
CVE-2024-33034 1 Qualcomm 213 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 210 more 2024-11-20 8.4 High
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
CVE-2023-4679 1 Gpac 1 Gpac 2024-11-19 5.9 Medium
A use after free vulnerability exists in GPAC version 2.3-DEV-revrelease, specifically in the gf_filterpacket_del function in filter_core/filter.c at line 38. This vulnerability can lead to a double-free condition, which may cause the application to crash.
CVE-2023-4134 3 Fedoraproject, Linux, Redhat 3 Fedora, Linux Kernel, Enterprise Linux 2024-11-19 5.5 Medium
A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to crash the system, causing a denial of service.
CVE-2024-49526 3 Adobe, Apple, Microsoft 3 Animate, Macos, Windows 2024-11-18 7.8 High
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2024-39388 3 Adobe, Apple, Microsoft 3 Substance 3d Stager, Macos, Windows 2024-11-16 7.8 High
Substance3D - Stager versions 3.0.2 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2024-38424 1 Qualcomm 240 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 237 more 2024-11-16 7.8 High
Memory corruption during GNSS HAL process initialization.
CVE-2024-8376 2 Eclipse, Redhat 3 Mosquitto, Satellite, Satellite Capsule 2024-11-15 7.5 High
In Eclipse Mosquitto up to version 2.0.18a, an attacker can achieve memory leaking, segmentation fault or heap-use-after-free by sending specific sequences of "CONNECT", "DISCONNECT", "SUBSCRIBE", "UNSUBSCRIBE" and "PUBLISH" packets.