An update for freeglut is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS,openEuler-22.03-LTS-SP1,openEuler-22.03-LTS-SP2 and openEuler-22.03-LTS-SP3 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2024-1174 Final 1.0 1.0 2024-02-23 Initial 2024-02-23 2024-02-23 openEuler SA Tool V1.0 2024-02-23 freeglut security update An update for freeglut is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS,openEuler-22.03-LTS-SP1,openEuler-22.03-LTS-SP2 and openEuler-22.03-LTS-SP3. Freeglut is a free-software/open-source alternative to the OpenGL Utility Toolkit (GLUT) library. GLUT was originally written to support the sample programs in the second edition OpenGL 'RedBook'. Since then, GLUT has been used in a wide variety of practical applications because it is simple, widely available and highly portable. Security Fix(es): freeglut 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddSubMenu function.(CVE-2024-24258) freeglut through 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddMenuEntry function.(CVE-2024-24259) An update for freeglut is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS,openEuler-22.03-LTS-SP1,openEuler-22.03-LTS-SP2 and openEuler-22.03-LTS-SP3. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High freeglut https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2024-1174 https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2024-24258 https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2024-24259 https://nvd.nist.gov/vuln/detail/CVE-2024-24258 https://nvd.nist.gov/vuln/detail/CVE-2024-24259 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS openEuler-22.03-LTS-SP1 openEuler-22.03-LTS-SP2 openEuler-22.03-LTS-SP3 freeglut-help-3.0.0-11.oe1.aarch64.rpm freeglut-debuginfo-3.0.0-11.oe1.aarch64.rpm freeglut-devel-3.0.0-11.oe1.aarch64.rpm freeglut-3.0.0-11.oe1.aarch64.rpm freeglut-debugsource-3.0.0-11.oe1.aarch64.rpm freeglut-debugsource-3.0.0-11.oe2003sp4.aarch64.rpm freeglut-help-3.0.0-11.oe2003sp4.aarch64.rpm freeglut-3.0.0-11.oe2003sp4.aarch64.rpm freeglut-debuginfo-3.0.0-11.oe2003sp4.aarch64.rpm freeglut-devel-3.0.0-11.oe2003sp4.aarch64.rpm freeglut-debuginfo-3.0.0-12.oe2203.aarch64.rpm freeglut-devel-3.0.0-12.oe2203.aarch64.rpm freeglut-help-3.0.0-12.oe2203.aarch64.rpm freeglut-debugsource-3.0.0-12.oe2203.aarch64.rpm freeglut-3.0.0-12.oe2203.aarch64.rpm freeglut-debuginfo-3.0.0-12.oe2203sp1.aarch64.rpm freeglut-help-3.0.0-12.oe2203sp1.aarch64.rpm freeglut-devel-3.0.0-12.oe2203sp1.aarch64.rpm freeglut-3.0.0-12.oe2203sp1.aarch64.rpm freeglut-debugsource-3.0.0-12.oe2203sp1.aarch64.rpm freeglut-help-3.0.0-12.oe2203sp2.aarch64.rpm freeglut-devel-3.0.0-12.oe2203sp2.aarch64.rpm freeglut-debuginfo-3.0.0-12.oe2203sp2.aarch64.rpm freeglut-debugsource-3.0.0-12.oe2203sp2.aarch64.rpm freeglut-3.0.0-12.oe2203sp2.aarch64.rpm freeglut-debugsource-3.0.0-12.oe2203sp3.aarch64.rpm freeglut-devel-3.0.0-12.oe2203sp3.aarch64.rpm freeglut-help-3.0.0-12.oe2203sp3.aarch64.rpm freeglut-3.0.0-12.oe2203sp3.aarch64.rpm freeglut-debuginfo-3.0.0-12.oe2203sp3.aarch64.rpm freeglut-3.0.0-11.oe1.src.rpm freeglut-3.0.0-11.oe2003sp4.src.rpm freeglut-3.0.0-12.oe2203.src.rpm freeglut-3.0.0-12.oe2203sp1.src.rpm freeglut-3.0.0-12.oe2203sp2.src.rpm freeglut-3.0.0-12.oe2203sp3.src.rpm freeglut-3.0.0-11.oe1.x86_64.rpm freeglut-help-3.0.0-11.oe1.x86_64.rpm freeglut-devel-3.0.0-11.oe1.x86_64.rpm freeglut-debugsource-3.0.0-11.oe1.x86_64.rpm freeglut-debuginfo-3.0.0-11.oe1.x86_64.rpm freeglut-help-3.0.0-11.oe2003sp4.x86_64.rpm freeglut-3.0.0-11.oe2003sp4.x86_64.rpm freeglut-debuginfo-3.0.0-11.oe2003sp4.x86_64.rpm freeglut-debugsource-3.0.0-11.oe2003sp4.x86_64.rpm freeglut-devel-3.0.0-11.oe2003sp4.x86_64.rpm freeglut-debuginfo-3.0.0-12.oe2203.x86_64.rpm freeglut-help-3.0.0-12.oe2203.x86_64.rpm freeglut-debugsource-3.0.0-12.oe2203.x86_64.rpm freeglut-3.0.0-12.oe2203.x86_64.rpm freeglut-devel-3.0.0-12.oe2203.x86_64.rpm freeglut-3.0.0-12.oe2203sp1.x86_64.rpm freeglut-debuginfo-3.0.0-12.oe2203sp1.x86_64.rpm freeglut-help-3.0.0-12.oe2203sp1.x86_64.rpm freeglut-debugsource-3.0.0-12.oe2203sp1.x86_64.rpm freeglut-devel-3.0.0-12.oe2203sp1.x86_64.rpm freeglut-help-3.0.0-12.oe2203sp2.x86_64.rpm freeglut-debugsource-3.0.0-12.oe2203sp2.x86_64.rpm freeglut-debuginfo-3.0.0-12.oe2203sp2.x86_64.rpm freeglut-devel-3.0.0-12.oe2203sp2.x86_64.rpm freeglut-3.0.0-12.oe2203sp2.x86_64.rpm freeglut-devel-3.0.0-12.oe2203sp3.x86_64.rpm freeglut-3.0.0-12.oe2203sp3.x86_64.rpm freeglut-debuginfo-3.0.0-12.oe2203sp3.x86_64.rpm freeglut-help-3.0.0-12.oe2203sp3.x86_64.rpm freeglut-debugsource-3.0.0-12.oe2203sp3.x86_64.rpm freeglut 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddSubMenu function. 2024-02-23 CVE-2024-24258 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS openEuler-22.03-LTS-SP1 openEuler-22.03-LTS-SP2 openEuler-22.03-LTS-SP3 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H freeglut security update 2024-02-23 https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2024-1174 freeglut through 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddMenuEntry function. 2024-02-23 CVE-2024-24259 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS openEuler-22.03-LTS-SP1 openEuler-22.03-LTS-SP2 openEuler-22.03-LTS-SP3 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H freeglut security update 2024-02-23 https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2024-1174