CVE-2024-24583

Name of the Vulnerable Software and Affected Versions libigl version 2.5.0

Description Multiple out-of-bounds read issues exist in the readMSH functionality. A specially crafted .msh file can lead to an out-of-bounds read. An attacker can provide a malicious file to trigger this issue, which concerns the readMSH function while processing MshLoader::ELEMENT TRI elements.

Recommendations For libigl version 2.5.0, as a temporary workaround, consider disabling the readMSH function until a patch is available. Restrict access to files that could potentially trigger this issue to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.