BugId DoubleFree[0x190] bd0.aa2 @ acrord32.exe!ucrtbase.dll!_free_base summary

BugId: DoubleFree[0x190] bd0.aa2
Location: acrord32.exe!ucrtbase.dll!_free_base
Description: The application attempted to free a 400/0x190 bytes heap block at 0x2A232E70 twice
Version: AcroRd32.exe: 19.10.20069.49826 (x86)
ucrtbase.dll: 10.0.17134.319 (x86)
Security impact: Potentially exploitable security issue, if the attacker can force the application to allocate memory between the two frees
Arguments: ['R:\\DoubleFree.pdf']

BugId version 2018-11-21 19:42 by SkyLined. Licensed to netanelbs for commercial use.

Stack

  1. ntdll.dll!vDbgPrintExWithPrefixInternal + 0x5D8EE (this frame is irrelevant to this bug)
  2. ntdll.dll!DbgPrintEx + 0x1F (this frame is irrelevant to this bug)
  3. verifier.dll!VerifierStopMessage + 0x24D (this frame is irrelevant to this bug)
  4. verifier.dll!AVrfpDphReportCorruptedBlock + 0x1CF (this frame is irrelevant to this bug)
  5. verifier.dll!AVrfpDphFindBusyMemoryNoCheck + 0x7D (this frame is irrelevant to this bug)
  6. verifier.dll!AVrfpDphFindBusyMemory + 0x15 (this frame is irrelevant to this bug)
  7. verifier.dll!AVrfpDphFindBusyMemoryAndRemoveFromBusyList + 0x20 (this frame is irrelevant to this bug)
  8. verifier.dll!AVrfDebugPageHeapFree + 0x90 (this frame is irrelevant to this bug)
  9. ntdll.dll!RtlDebugFreeHeap + 0x3E (this frame is irrelevant to this bug)
  10. ntdll.dll!RtlpFreeHeap + 0xD5 (this frame is irrelevant to this bug)
  11. ntdll.dll!RtlFreeHeap + 0x222 (this frame is irrelevant to this bug)
  12. ucrtbase.dll!_free_base + 0x1B (id: bd0)
  13. ucrtbase.dll!free + 0x18 (id: aa2)
  14. JP2KLib.dll + 0x686D6 (no function symbol available)
  15. JP2KLib.dll + 0x68E4B (no function symbol available)
  16. JP2KLib.dll + 0x45590 (no function symbol available)
  17. JP2KLib.dll + 0x4E166 (no function symbol available)
  18. AcroRd32.dll + 0x-32D6A068 (no function symbol available)
  19. AcroRd32.dll + 0x65F5FA (no function symbol available)
  20. AcroRd32.dll + 0x660343 (no function symbol available)
  21. AcroRd32.dll + 0x6561DB (no function symbol available)
  22. AcroRd32.dll + 0x1ECD54 (no function symbol available)
  23. AcroRd32.dll + 0x1EC3C8 (no function symbol available)
  24. AcroRd32.dll + 0x1EB765 (no function symbol available)
  25. AcroRd32.dll + 0x1EB6EE (no function symbol available)
  26. AcroRd32.dll + 0x1EB5D3 (no function symbol available)
  27. AcroRd32.dll + 0x1EA580 (no function symbol available)
  28. AcroRd32.dll + 0x1E79C4 (no function symbol available)
  29. AcroRd32.dll + 0x1E757E (no function symbol available)
  30. AcroRd32.dll + 0x1CFF22 (no function symbol available)
  31. AcroRd32.dll + 0x1CE312 (no function symbol available)
  32. AcroRd32.dll + 0x1C054E (no function symbol available)
  33. AcroRd32.dll + 0x1BFCDC (no function symbol available)
  34. AcroRd32.dll + 0x1BD701 (no function symbol available)
  35. AcroRd32.dll + 0x1BD420 (no function symbol available)
  36. AcroRd32.dll + 0x1BD2E0 (no function symbol available)
  37. AcroRd32.dll + 0x1BC670 (no function symbol available)
  38. AcroRd32.dll + 0x1BB16A (no function symbol available)
  39. AcroRd32.dll + 0x1BA034 (no function symbol available)
  40. AcroRd32.dll + 0x1B87C2 (no function symbol available)
  41. AcroRd32.dll + 0x1B8358 (no function symbol available)
  42. AcroRd32.dll + 0x1B690D (no function symbol available)
  43. AcroRd32.dll + 0x1B63F5 (no function symbol available)
  44. AcroRd32.dll + 0x1B624F (no function symbol available)
  45. AcroRd32.dll + 0x1B603A (no function symbol available)
  46. AcroRd32.dll + 0x81B19 (no function symbol available)
  47. AcroRd32.dll + 0x819F5 (no function symbol available)
  48. USER32.dll!_InternalCallWinProc + 0x2B
  49. USER32.dll!UserCallWinProcCheckWow + 0x3AA
  50. USER32.dll!DispatchClientMessage + 0xEA
  51. USER32.dll!__fnDWORD + 0x49
  52. ntdll.dll!KiUserCallbackDispatcher + 0x4D
  53. win32u.dll!NtUserDispatchMessage + 0xC
  54. USER32.dll!DispatchMessageWorker + 0x31A
  55. USER32.dll!DispatchMessageW + 0x10
  56. AcroRd32.dll + 0x90ADA (no function symbol available)
  57. AcroRd32.dll + 0x908A4 (no function symbol available)
  58. AcroRd32.dll + 0x2AB59 (no function symbol available)
  59. AcroRd32.dll + 0x2A42D (no function symbol available)
  60. AcroRd32.exe + 0x7319 (no function symbol available)
  61. AcroRd32.exe + 0x108F7A (no function symbol available)
  62. KERNEL32.DLL!BaseThreadInitThunk + 0x24
  63. ntdll.dll!__RtlUserThreadStart + 0x2F
  64. ntdll.dll!_RtlUserThreadStart + 0x1B
⇓ click on the title of a section to open or close it.
This report was generated using BugId version 2018-11-21 19:42 by SkyLined.
This copy of BugId is licensed for commercial use by netanelbs.