Vulnerabilities > Release of Invalid Pointer or Reference
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-24 | CVE-2019-20631 | Release of Invalid Pointer or Reference vulnerability in Gpac An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. | 5.5 |
| 2020-01-10 | CVE-2019-19820 | Release of Invalid Pointer or Reference vulnerability in Kyrol Internet Security 9.0.6.9 An invalid pointer vulnerability in IOCTL Handling in the kyrld.sys driver in Kyrol Internet Security 9.0.6.9 allows an attacker to achieve privilege escalation, denial-of-service, and code execution via usermode because 0x9C402405 using METHOD_NEITHER results in a read primitive. | 7.8 |
| 2019-12-31 | CVE-2019-20202 | Release of Invalid Pointer or Reference vulnerability in Ezxml Project Ezxml An issue was discovered in ezXML 0.8.3 through 0.8.6. | 6.5 |
| 2019-12-31 | CVE-2019-20170 | Release of Invalid Pointer or Reference vulnerability in multiple products An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. | 5.5 |
| 2019-12-27 | CVE-2013-4695 | Release of Invalid Pointer or Reference vulnerability in Winamp 5.63 Winamp 5.63: Invalid Pointer Dereference leading to Arbitrary Code Execution | 7.8 |
| 2019-12-04 | CVE-2019-11930 | Release of Invalid Pointer or Reference vulnerability in Facebook Hhvm An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution. | 9.8 |
| 2019-09-27 | CVE-2019-9290 | Release of Invalid Pointer or Reference vulnerability in Google Android 10.0 In tzdata there is possible memory corruption due to a mismatch between allocation and deallocation functions. | 7.8 |
| 2018-02-08 | CVE-2018-6836 | Release of Invalid Pointer or Reference vulnerability in Wireshark The netmonrec_comment_destroy function in wiretap/netmon.c in Wireshark through 2.4.4 performs a free operation on an uninitialized memory address, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. | 9.8 |
| 2018-01-24 | CVE-2017-18075 | Release of Invalid Pointer or Reference vulnerability in multiple products crypto/pcrypt.c in the Linux kernel before 4.14.13 mishandles freeing instances, allowing a local user able to access the AF_ALG-based AEAD interface (CONFIG_CRYPTO_USER_API_AEAD) and pcrypt (CONFIG_CRYPTO_PCRYPT) to cause a denial of service (kfree of an incorrect pointer) or possibly have unspecified other impact by executing a crafted sequence of system calls. | 7.8 |
| 2017-08-09 | CVE-2017-0731 | Release of Invalid Pointer or Reference vulnerability in Google Android A elevation of privilege vulnerability in the Android media framework (mpeg4 encoder). | 7.8 |