104 matches found
CVE-2022-40009
SWFTools commit 772e55a was discovered to contain a heap-use-after-free via the function growunicode at /lib/ttf.c...
PT-2022-25522 · Samsung · Samsung Mtower
Name of the Vulnerable Software and Affected Versions: Samsung mTower versions 0.3.0 and earlier Description: The issue allows a trusted application to trigger a Denial of Service DoS by invoking the function TEE AllocateOperation with a disturbed heap layout, related to utee cryp obj alloc. This...
PT-2022-33646 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.66 Description: A potential issue exists in the ieee80211 scan rx function, which may be related to a use-after-free UAF error. The actual impact and likelihood of an attack have not been confirmed...
DEBIAN-CVE-2019-20398
A NULL pointer dereference is present in libyang before v1.0-r3 in the function lysextensioninstancesfree due to a copy of unresolved extensions in lysrestrdup. Applications that use libyang to parse untrusted input yang files may crash...
CVE-2018-21028
Boa through 0.94.14rc21 allows remote attackers to trigger a memory leak because of missing calls to the free function...
CVE-2018-21028
Boa through 0.94.14rc21 allows remote attackers to trigger a memory leak because of missing calls to the free function...
Memory misreference vulnerability in libpng 'png_image_free' function
libpng is a PNG reference library that can create, read and write PNG graphics files. A memory misreference vulnerability exists in the 'pngimagefree' function of the png.c file in libpng version 1.6.36. An attacker can exploit this vulnerability to cause a denial of service with the help of...
DEBIAN-CVE-2019-7317
pngimagefree in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because pngimagefreefunction is called under pngsafeexecute...
CVE-2018-19876
cairo 1.16.0, in cairoftapplyvariations in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free: invalid pointer" error...
The vulnerability of the `free` function in the beep utility allows a hacker to gain access to confidential information or block the execution of arbitrary applications.
The vulnerability of the free function in the beep utility is related to the occurrence of a “race condition” when signal handlers that send signals SIGINT and SIGTERM to the free function are used. Exploiting this vulnerability can allow an attacker to gain access to confidential information or ...
Memory corruption
cairo 1.16.0, in cairoftapplyvariations in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free: invalid pointer" error...
PT-2018-13961 · Videolan · Libmp4V2
Name of the Vulnerable Software and Affected Versions: libmp4v2 version 2.1.0 Description: The issue arises from the function MP4Free in mp4property.cpp, which internally calls free on an invalid pointer. This results in a SIGABRT signal being raised. Recommendations: For libmp4v2 version 2.1.0,...
memcached: Integer Overflow in items.c:item_free()
memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:itemfree that can result in data corruption and deadlocks due to items existing in hash table being reused from free list. This attack appear to be exploitable via network connectivity to the memcached service...
DEBIAN-CVE-2018-1000127
memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:itemfree that can result in data corruption and deadlocks due to items existing in hash table being reused from free list. This attack appear to be exploitable via network connectivity to the memcached service...
Linux kernel denial of service vulnerability (CNVD-2017-06845)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the 'regulatorenagpiofree' function in the drivers/regulator/core.c file in versions of Linux kernel prior to 3.19. An attacker can exploit...
UBUNTU-CVE-2017-7861
Google gRPC before 2017-02-22 has an out-of-bounds write related to the gprfree function in core/lib/support/alloc.c...
Critical: Red Hat Security Advisory: glibc security and bug fix update
Updated glibc packages that fix two security issues and two bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
CVE-2015-3205
libmimedir allows remote attackers to execute arbitrary code via a VCF file with two NULL bytes at the end of the file, related to "free" function calls in the "lexer's memory clean-up procedure."...
CVE-2014-1255
CVE-2014-1255 affects Apple Type Services (ATS) on macOS OS X versions prior to 10.9.2. The root issue is improper validation of calls to the free function when handling Mach messages, allowing an attacker to bypass the App Sandbox protection. The vulnerability enables sandbox bypass via crafted ...
MITKRB5-SA-2011-004 kadmind invalid pointer free() [CVE-2011-0285]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MITKRB5-SA-2011-004 MIT krb5 Security Advisory 2011-004 Original release: 2011-04-12 Last update: 2011-04-12 Topic: kadmind invalid pointer free CVE-2011-0285 CVSSv2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C CVSSv2 Base Score: 10 Access...