Unrated severityNVD Advisory· Published Aug 17, 2020· Updated Aug 4, 2024
CVE-2020-24370
CVE-2020-24370
Description
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12- (empty string)/Luadescription
- osv-coords10 versionspkg:bitnami/luapkg:rpm/almalinux/luapkg:rpm/almalinux/lua-develpkg:rpm/almalinux/lua-libspkg:rpm/opensuse/lua53&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/lua53&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/lua55&distro=openSUSE%20Tumbleweedpkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
>= 5.2.0, < 5.2.4+ 9 more
- (no CPE)range: >= 5.2.0, < 5.2.4
- (no CPE)range: < 5.3.4-12.el8
- (no CPE)range: < 5.3.4-12.el8
- (no CPE)range: < 5.3.4-12.el8
- (no CPE)range: < 5.3.6-lp152.5.3.1
- (no CPE)range: < 5.3.6-3.6.1
- (no CPE)range: < 5.5.0~beta1-1.1
- (no CPE)range: < 5.3.6-3.6.1
- (no CPE)range: < 5.3.6-3.6.1
- (no CPE)range: < 5.3.6-3.6.1
Patches
Vulnerability mechanics
References
6- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E6KONNG6UEI3FMEOY67NDZC32NBGBI44/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QXYMCIUNGK26VHAYHGP5LPW56G2KWOHQ/mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2020/09/msg00019.htmlmitremailing-list
- lists.debian.org/debian-lts-announce/2023/06/msg00031.htmlmitremailing-list
- lua-users.org/lists/lua-l/2020-07/msg00324.htmlmitre
- github.com/lua/lua/commit/a585eae6e7ada1ca9271607a4f48dfb17868ab7bmitre
News mentions
0No linked articles in our index yet.