CWE:
 

Topic
Date
Author
Med.
PHP 5.6.9 Use-After-Free
10.06.2015
High-Tech Bridge Secur...


CVEMAP Search Results

CVE
Details
Description
2019-02-15
Medium
CVE-2019-8343

Vendor: NASM
Software: Netwide asse...
 

 
In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c.

 
2019-02-13
High
CVE-2018-6268

Vendor: Google
Software: Android
 

 
NVIDIA Tegra library contains a vulnerability in libnvmmlite_video.so, where referencing memory after it has been freed may lead to denial of service or possible escalation of privileges. Android ID: A-80433161.

 
2019-02-11
Medium
CVE-2018-13889

Vendor: Google
Software: Android
 

 
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Heap memory was accessed after it was freed

 
Medium
CVE-2018-12014

Vendor: Google
Software: Android
 

 
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Null pointer dereference vulnerability may occur due to missing NULL assignment in NAT module of freed pointer.

 
Medium
CVE-2018-11962

Vendor: Google
Software: Android
 

 
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Use-after-free issue in heap while loading audio effects config in audio effects factory.

 
2019-02-10
Low
CVE-2019-7703

Vendor: Webassembly
Software: Binaryen
 

 
In Binaryen 1.38.22, there is a use-after-free problem in wasm::WasmBinaryBuilder::visitCall in wasm-binary.cpp. Remote attackers could leverage this vulnerability to cause a denial-of-service via a wasm file, as demonstrated by wasm-merge.

 
2019-02-07
Low
CVE-2019-7560

Vendor: Boolector project
Software: Boolector
 

 
In parser/btorsmt2.c in Boolector 3.0.0, opening a specially crafted input file leads to a use after free in get_failed_assumptions or btor_delete.

 
2019-02-06
Medium
CVE-2018-7817

Vendor: Schneider-electric
Software: Zelio soft 2
 

 
A Use After Free (CWE-416) vulnerability exists in Zelio Soft 2 v5.1 and prior versions which could cause remote code execution when opening a specially crafted Zelio Soft project file.

 
2019-02-05
Medium
CVE-2018-18500

Vendor: Mozilla
Software: Firefox
 

 
A use-after-free vulnerability can occur while parsing an HTML5 stream in concert with custom HTML elements. This results in the stream parser object being freed while still in use, leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 60.5, Firefox ESR < 60.5, and Firefox < 65.

 
2019-02-04
Low
CVE-2019-7317

Vendor: Libpng
Software: Libpng
 

 
png_image_free in png.c in libpng 1.6.36 has a use-after-free because png_image_free_function is called under png_safe_execute.

 

 


Copyright 2019, cxsecurity.com

 

Back to Top