CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-24258 – freeglut: memory leak via glutAddSubMenu() function
https://notcve.org/view.php?id=CVE-2024-24258
freeglut 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddSubMenu function. Se descubrió que mupdf v1.23.9 contenía una pérdida de memoria a través de la variable menuEntry en la función glutAddSubMenu. A memory leak flaw was found in the glutAddSubMenu function of freeglut, an open-source alternative to the OpenGL Utility Toolkit. This flaw allows an attacker to launch a denial of service attack by crashing or hanging the program or taking advantage of other unexpected program behavior resulting from a low memory condition. • https://github.com/freeglut/freeglut/pull/155 https://github.com/yinluming13579/mupdf_defects/blob/main/mupdf_detect_1.md https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IBAWX3HMMZVAWJZ3U6VOAYYOYJCN3IS https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T43DAHPIWMGN54E4I6ABLHNYHZSTX7H5 https://access.redhat.com/security/cve/CVE-2024-24258 https://bugzilla.redhat.com/show_bug.cgi?id=2263939 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-24259 – freeglut: memory leak via glutAddMenuEntry() function
https://notcve.org/view.php?id=CVE-2024-24259
freeglut through 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddMenuEntry function. Se descubrió que mupdf v1.23.9 contenía una pérdida de memoria a través de la variable menuEntry en la función glutAddMenuEntry. A memory leak flaw was found in the glutAddMenuEntry function of freeglut, an open-source alternative to the OpenGL Utility Toolkit. This issue may allow an attacker to launch a denial of service attack by crashing or hanging the program or take advantage of other unexpected program behavior resulting from a low memory condition. • https://github.com/freeglut/freeglut/pull/155 https://github.com/yinluming13579/mupdf_defects/blob/main/mupdf_detect_2.md https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IBAWX3HMMZVAWJZ3U6VOAYYOYJCN3IS https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T43DAHPIWMGN54E4I6ABLHNYHZSTX7H5 https://access.redhat.com/security/cve/CVE-2024-24259 https://bugzilla.redhat.com/show_bug.cgi?id=2263943 • CWE-401: Missing Release of Memory after Effective Lifetime •