32 vulnerabilities classified as CWE-672 (在过期或释放后对资源进行操作). AI Chinese analysis included.
CWE-672 represents a resource management weakness where software continues to interact with a resource after it has been expired, released, or revoked. This vulnerability typically arises when applications fail to properly track the lifecycle of memory pointers, file handles, or network connections, leading to use-after-free errors or access to invalid data. Attackers exploit this by triggering the release of a resource while it remains referenced, potentially causing application crashes, data corruption, or arbitrary code execution through heap corruption. To mitigate this risk, developers must implement rigorous lifecycle management protocols, ensuring that all references to a resource are nullified or invalidated immediately upon release. Utilizing smart pointers, garbage collection mechanisms, and strict ownership models helps prevent dangling references, while comprehensive testing for race conditions ensures that concurrent operations do not inadvertently access freed resources.
char* ptr = (char*)malloc (SIZE); if (err) { abrt = 1; free(ptr); } ... if (abrt) { logError("operation aborted before commit", ptr); }char* ptr = (char*)malloc (SIZE); ... if (abrt) { free(ptr); } ... free(ptr);| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-15794 | Reference counting error in overlayfs/shiftfs error path when used in conjuction with aufs — Linux kernel | 7.1 | High | 2020-04-23 |
| CVE-2019-15791 | Reference count underflow in shiftfs — Shiftfs in the Linux kernel | 7.1 | High | 2020-04-23 |
Vulnerabilities classified as CWE-672 (在过期或释放后对资源进行操作) represent 32 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.