CVE-2020-15945
24.07.2020, 21:15
Lua 5.4.0 (fixed in 5.4.1) has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function.Enginsight
| Vendor | Product | Version |
|---|---|---|
| lua | lua | 5.3.1 ≤ 𝑥 < 5.4.0 |
𝑥
= Vulnerable software versions
Debian Releases
Debian Product | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| lua5.1 |
| ||||||||
| lua5.2 |
| ||||||||
| lua5.3 |
| ||||||||
| lua5.4 |
| ||||||||
| lua50 |
|
Ubuntu Releases
Ubuntu Product | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| lua5.1 |
| ||||||||||||||||
| lua5.2 |
| ||||||||||||||||
| lua5.3 |
| ||||||||||||||||
| lua5.4 |
| ||||||||||||||||
| lua50 |
|
References