moderate: hwloc/freeglut security update
moderate
An update for hwloc/freeglut is now available for NewStart CGSL MAIN 7.02.
NewStart Security has rated this update as having a security impact of moderate. A Common Vunlnerability Scoring System(CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.
hwloc:
freeglut:
Security Fix(es):
hwloc: A flaw was found in open-mpi/hwloc. A NULL pointer dereference in the hwloc_linux_set_tid_cpubind function in topology-linux.c may cause the application to crash and lead to a denial of service in certain conditions.(CVE-2022-47022)
hwloc: bugfix
freeglut: A memory leak flaw was found in the glutAddMenuEntry function of freeglut, an open-source alternative to the OpenGL Utility Toolkit. This issue may allow an attacker to launch a denial of service attack by crashing or hanging the program or take advantage of other unexpected program behavior resulting from a low memory condition.(CVE-2024-24259)
freeglut: bugfix
Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
http://security.gd-linux.com/how_to_apply_patch.html
Remember the build tag is 7.02.03B8.