Description
freeglut through 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddMenuEntry function.
References (5)
Core 5
Core References
Exploit, Third Party Advisory
https://github.com/yinluming13579/mupdf_defects/blob/main/mupdf_detect_2.md
Issue Tracking
https://github.com/freeglut/freeglut/pull/155
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/6IBAWX3HMMZVAWJZ3U6VOAYYOYJCN3IS/
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T43DAHPIWMGN54E4I6ABLHNYHZSTX7H5/
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IBAWX3HMMZVAWJZ3U6VOAYYOYJCN3IS/
Scores
CVSS v3
7.5
EPSS
0.0025
EPSS Percentile
48.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-401
Status
published
Products (1)
artifex/mupdf
1.23.9
Published
Feb 05, 2024
Tracked Since
Feb 18, 2026