An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.
Max CVSS
7.5
EPSS Score
0.35%
Published
2022-07-01
Updated
2022-11-05
singlevar in lparser.c in Lua from (including) 5.4.0 up to (excluding) 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.
Max CVSS
9.1
EPSS Score
0.28%
Published
2022-04-08
Updated
2023-05-03
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.
Max CVSS
7.5
EPSS Score
0.06%
Published
2023-04-10
Updated
2023-04-14
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows attackers to perform Sandbox Escape via a crafted script file.
Max CVSS
6.3
EPSS Score
0.06%
Published
2022-03-14
Updated
2022-03-21
Lua v5.4.3 and above are affected by SEGV by type confusion in funcnamefromcode function in ldebug.c which can cause a local denial of service.
Max CVSS
5.5
EPSS Score
0.04%
Published
2022-01-11
Updated
2023-05-03
Stack overflow in lua_resume of ldo.c in Lua Interpreter 5.1.0~5.4.4 allows attackers to perform a Denial of Service via a crafted script file.
Max CVSS
5.5
EPSS Score
0.08%
Published
2021-11-09
Updated
2022-05-03
lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.
Max CVSS
5.3
EPSS Score
0.12%
Published
2020-08-17
Updated
2023-01-28
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).
Max CVSS
5.3
EPSS Score
0.50%
Published
2020-08-17
Updated
2023-06-23
ldebug.c in Lua 5.4.0 attempts to access debug information via the line hook of a stripped function, leading to a NULL pointer dereference.
Max CVSS
7.5
EPSS Score
0.13%
Published
2020-08-17
Updated
2020-08-24
Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row.
Max CVSS
7.8
EPSS Score
0.14%
Published
2020-08-13
Updated
2021-01-26
Lua through 5.4.0 has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function.
Max CVSS
5.5
EPSS Score
0.04%
Published
2020-07-24
Updated
2023-04-20
Lua 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members.
Max CVSS
9.8
EPSS Score
0.36%
Published
2020-07-21
Updated
2020-12-23
Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free.
Max CVSS
8.8
EPSS Score
0.24%
Published
2020-07-21
Updated
2023-05-16
Lua 5.3.5 has a use-after-free in lua_upvaluejoin in lapi.c. For example, a crash outcome might be achieved by an attacker who is able to trigger a debug.upvaluejoin call in which the arguments have certain relationships.
Max CVSS
7.5
EPSS Score
3.32%
Published
2019-01-23
Updated
2023-06-23
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
Max CVSS
5.0
EPSS Score
0.31%
Published
2014-09-04
Updated
2023-05-03
15 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!