Vulnerabilities > Double Free
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-14 | CVE-2023-52383 | Double Free vulnerability in Huawei Emui and Harmonyos Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability. | 5.5 |
| 2024-05-14 | CVE-2023-52384 | Double Free vulnerability in Huawei Emui and Harmonyos Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability. | 5.5 |
| 2024-05-01 | CVE-2024-27392 | Double Free vulnerability in Linux Kernel 6.8/6.8.1 In the Linux kernel, the following vulnerability has been resolved: nvme: host: fix double-free of struct nvme_id_ns in ns_update_nuse() When nvme_identify_ns() fails, it frees the pointer to the struct nvme_id_ns before it returns. | 7.8 |
| 2024-05-01 | CVE-2024-26930 | Double Free vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix double free of the ha->vp_map pointer Coverity scan reported potential risk of double free of the pointer ha->vp_map. | 7.8 |
| 2024-05-01 | CVE-2024-26932 | Double Free vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix double-free issue in tcpm_port_unregister_pd() When unregister pd capabilitie in tcpm, KASAN will capture below double -free issue. | 7.8 |
| 2024-04-04 | CVE-2024-26782 | Double Free vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: mptcp: fix double-free on socket dismantle when MPTCP server accepts an incoming connection, it clones its listener socket. | 7.8 |
| 2024-04-04 | CVE-2024-26792 | Double Free vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free of anonymous device after snapshot creation failure When creating a snapshot we may do a double free of an anonymous device in case there's an error committing the transaction. | 7.8 |
| 2024-04-03 | CVE-2024-26748 | Double Free vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if (request->complete) { 830 spin_unlock(&priv_dev->lock); 831 usb_gadget_giveback_request(&priv_ep->endpoint, 832 request); 833 spin_lock(&priv_dev->lock); 834 } 835 836 if (request->buf == priv_dev->zlp_buf) 837 cdns3_gadget_ep_free_request(&priv_ep->endpoint, request); Driver append an additional zero packet request when queue a packet, which length mod max packet size is 0. | 7.8 |
| 2024-04-03 | CVE-2024-26694 | Double Free vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix double-free bug The storage for the TLV PC register data wasn't done like all the other storage in the drv->fw area, which is cleared at the end of deallocation. | 7.8 |
| 2024-04-03 | CVE-2024-26704 | Double Free vulnerability in multiple products In the Linux kernel, the following vulnerability has been resolved: ext4: fix double-free of blocks due to wrong extents moved_len In ext4_move_extents(), moved_len is only updated when all moves are successfully executed, and only discards orig_inode and donor_inode preallocations when moved_len is not zero. | 7.8 |