Vulnerabilities > Use After Free
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-10-10 | CVE-2017-11048 | Use After Free vulnerability in Google Android 8.0 In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in a display driver function, a Use After Free condition can occur. | 7.8 |
| 2017-10-03 | CVE-2017-14989 | Use After Free vulnerability in Imagemagick 7.0.74 A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attackers to crash the application via a crafted font file, because the FT_Done_Glyph function (from FreeType 2) is called at an incorrect place in the ImageMagick code. | 6.5 |
| 2017-09-29 | CVE-2017-9790 | Use After Free vulnerability in Apache Mesos When handling a libprocess message wrapped in an HTTP request, libprocess in Apache Mesos before 1.1.3, 1.2.x before 1.2.2, 1.3.x before 1.3.1, and 1.4.0-dev crashes if the request path is empty, because the parser assumes the request path always starts with '/'. | 7.5 |
| 2017-09-29 | CVE-2017-14857 | Use After Free vulnerability in Exiv2 0.26 In Exiv2 0.26, there is an invalid free in the Image class in image.cpp that leads to a Segmentation fault. | 5.5 |
| 2017-09-21 | CVE-2017-9676 | Use After Free vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, potential use after free scenarios and race conditions can occur when accessing global static variables without using a lock. | 4.7 |
| 2017-09-21 | CVE-2017-8277 | Use After Free vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, in the function msm_dba_register_client, if the client registers failed, it would be freed. | 7.8 |
| 2017-09-20 | CVE-2015-6673 | Use After Free vulnerability in Libpgf 6.11.42/6.12.24/6.14.12 Use-after-free vulnerability in Decoder.cpp in libpgf before 6.15.32. | 9.8 |
| 2017-09-20 | CVE-2015-3890 | Use After Free vulnerability in Litespeedtech Openlitespeed Use-after-free vulnerability in Open Litespeed before 1.3.10. | 7.5 |
| 2017-09-20 | CVE-2015-1329 | Use After Free vulnerability in Canonical Ubuntu Linux 14.04/15.04 Use-after-free vulnerability in oxide::qt::URLRequestDelegatedJob in oxide-qt in Ubuntu 15.04 and 14.04 LTS might allow remote attackers to execute arbitrary code. | 8.8 |
| 2017-09-18 | CVE-2017-9798 | Use After Free vulnerability in multiple products Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's .htaccess file, or if httpd.conf has certain misconfigurations, aka Optionsbleed. | 7.5 |