Lucene search

GoogleOSV:CVE-2024-24258

HistoryFeb 05, 2024 - 6:15 p.m.

CVE-2024-24258

2024-02-0518:15:52

Google

osv.dev

freeglut

memory leak

3.4.0

menuentry

glutaddsubmenu

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

20.5%

JSON

freeglut 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddSubMenu function.

CPENameOperatorVersion
mupdfeq1.6
mupdfeq1.5-ios-rc7
mupdfeq0.3
mupdfeq0.5
mupdfeq1.23.0-rc1
mupdfeq1.21.0-rc1
mupdfeq1.3
mupdfeq1.0
mupdfeq1.0rc1
mupdfeq1.23.3

Name	Operator	Version
mupdf	eq	1.6
mupdf	eq	1.5-ios-rc7
mupdf	eq	0.3
mupdf	eq	0.5
mupdf	eq	1.23.0-rc1
mupdf	eq	1.21.0-rc1
mupdf	eq	1.3
mupdf	eq	1.0
mupdf	eq	1.0rc1
mupdf	eq	1.23.3

Rows per page:

1-10 of 811

References

github.com/freeglut/freeglut/pull/155

github.com/yinluming13579/mupdf_defects/blob/main/mupdf_detect_1.md

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IBAWX3HMMZVAWJZ3U6VOAYYOYJCN3IS/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T43DAHPIWMGN54E4I6ABLHNYHZSTX7H5/

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

20.5%

JSON

Related for OSV:CVE-2024-24258