FS#67583 - [lua] [security] CVE-2020-15945
Attached to Project:
Arch Linux
Opened by loqs (loqs) - Friday, 14 August 2020, 17:48 GMT
Last edited by Toolybird (Toolybird) - Saturday, 29 October 2022, 22:44 GMT
Opened by loqs (loqs) - Friday, 14 August 2020, 17:48 GMT
Last edited by Toolybird (Toolybird) - Saturday, 29 October 2022, 22:44 GMT
|
Details
Description:
Lua through 5.4.0 has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function. Additional info: * lua 5.4.0-2 * https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15945 * lua-patches.txt contains table of CVEs and commits ordered by commit on the master branch. |
This task depends upon
Closed by Toolybird (Toolybird)
Saturday, 29 October 2022, 22:44 GMT
Reason for closing: Fixed
Additional comments about closing: @blakkheim says "fixed a long time ago"
Saturday, 29 October 2022, 22:44 GMT
Reason for closing: Fixed
Additional comments about closing: @blakkheim says "fixed a long time ago"