use-after-free

The Linux kernel recently received a targeted patch addressing a use‑after‑free in the Transparent Inter‑Process Communication (TIPC) subsystem: CVE‑2025‑40280 — “tipc: Fix use‑after‑free in tipc_mon_reinit_self”. The bug, reported by syzbot and flagged by KASAN traces, arises because...

A kernel-level use-after-free (UAF) defect in the VMware graphics driver drm/vmwgfx has been assigned CVE‑2025‑40111 and fixed upstream; the problem stems from a resource from an arena allocator escaping the validation cleanup path, which can leave a freed node reachable in a duplicates...

The Linux kernel disclosure tracked as CVE-2024-49945 fixes a subtle but meaningful resource-management bug in the Network Controller Sideband Interface (NCSI) driver: the kernel was freeing an NCSI device structure while a scheduled work item could still run against it, creating a classic...

The Linux kernel has a newly cataloged use‑after‑free in the zswap compression path—tracked as CVE‑2025‑21693—that can be triggered when a CPU is hot‑unplugged while compression or decompression is still using per‑CPU resources, allowing those resources to be freed under active use and producing...

The Linux kernel fix for CVE-2025-21786 corrects a subtle but dangerous ordering error in the workqueue cleanup path that created a use-after-free window: the patch moves the code that drops the workqueue pool reference (pwq) so it happens only after the rescuer thread has been detached from the...

A use-after-free bug in the Btrfs filesystem implementation has been patched in the Linux kernel under CVE-2024-50217, a high-severity flaw that can be triggered by a local attacker mounting specially crafted images and that can cause a sustained or persistent denial-of-service by corrupting...

A small but important kernel patch fixing CVE-2025-40223 closes a race that could produce a use‑after‑free (UAF) in the MOST USB driver’s disconnect path, converting a KASAN‑reported crash into a deterministic and safe device release sequence and removing redundant device reference adjustments...

Microsoft’s Security Response Center has added CVE‑2025‑60716 to its November Patch Tuesday advisories: a use‑after‑free flaw in the DirectX Graphics Kernel that allows an authenticated local attacker to elevate privileges to SYSTEM if they win a race condition, and Microsoft rates the issue as...

Microsoft has published an advisory for CVE-2025-60717, a high‑impact use‑after‑free vulnerability in the Windows Broadcast DVR User Service that Microsoft says can be abused by an authorized local user to elevate privileges on affected hosts — administrators should treat it as a priority...

Microsoft has published a security advisory and accompanying fixes for CVE-2025-58737, a use‑after‑free vulnerability in Windows Remote Desktop that can lead to local remote code execution when exploited under specific conditions. The advisory and industry trackers indicate the vulnerability was...

Microsoft has published an advisory for CVE-2025-59238, a use‑after‑free vulnerability in Microsoft PowerPoint that can allow an attacker to execute arbitrary code on a local system when a user opens a crafted presentation. Microsoft’s advisory and multiple third‑party trackers place the CVSS...

Microsoft has published an advisory for CVE-2025-58718, a high‑severity use‑after‑free vulnerability in the Remote Desktop Client that can allow a malicious RDP server to execute arbitrary code on a client that connects to it; the vendor and multiple independent trackers assign a CVSS v3.1 base...

Microsoft’s October Patch Tuesday closed a cluster of use‑after‑free bugs in Windows “Inbox COM Objects” — one of which, tracked as CVE‑2025‑58735, is described by Microsoft and multiple independent trackers as a high‑impact memory‑corruption flaw that can lead to local code execution when a...

Microsoft has recorded CVE-2025-55686 as a use‑after‑free (CWE‑416) elevation‑of‑privilege flaw in the Windows PrintWorkflowUserSvc, a privileged print‑stack service, and Microsoft’s advisory plus independent trackers list it with a High (7.0) CVSS v3.1 base score — a local attack that can let a...

Google released an emergency Chrome stable update that fixes a use‑after‑free (UAF) vulnerability in the WebRTC component tracked as CVE‑2025‑10501, and Microsoft Edge (Chromium‑based) customers should treat the issue as relevant until Microsoft ships the Chromium ingestion for Edge. Background...

Short answer up front — I can write the 2,000+ word WindowsForum.com feature you asked for, but I need one quick clarification before I start: I can't find any public record for CVE‑2025‑59220. Public trackers and vendor records instead show multiple Windows “Bluetooth Service”...

A newly assigned Chromium vulnerability, CVE-2025-10200, is a use‑after‑free flaw in the ServiceWorker implementation that Google patched in its September stable updates; the bug allows a remote attacker, by luring a user to a crafted page, to trigger heap corruption and potentially achieve...

Microsoft’s security advisory confirms a use‑after‑free defect in the BitLocker stack that can be triggered by an authorized local user to escalate privileges on affected Windows systems — administrators must treat CVE‑2025‑54912 as an urgent patching priority and assume a high‑impact threat...

Microsoft’s security update guide lists CVE‑2025‑54911 as a use‑after‑free defect in Windows BitLocker that can be triggered by an authorized local user to elevate privileges on affected machines, creating a high‑impact local elevation‑of‑privilege risk that administrators must treat as urgent...

Microsoft’s Security Response Guide lists CVE-2025-54112 as a vulnerability in the Microsoft Virtual Hard Disk (VHD/VHDX) handling code that can be abused by an authorized local attacker to achieve elevation of privilege on Windows hosts, a condition vendors and incident responders classify as...