Unrated severityNVD Advisory· Published Aug 17, 2020· Updated Aug 4, 2024
CVE-2020-24371
CVE-2020-24371
Description
lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- Lua/Luadescription
- osv-coords7 versionspkg:bitnami/luapkg:rpm/opensuse/lua53&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/lua53&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/lua55&distro=openSUSE%20Tumbleweedpkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
>= 5.4.0, < 5.4.1+ 6 more
- (no CPE)range: >= 5.4.0, < 5.4.1
- (no CPE)range: < 5.3.6-lp152.5.3.1
- (no CPE)range: < 5.3.6-3.6.1
- (no CPE)range: < 5.5.0~beta1-1.1
- (no CPE)range: < 5.3.6-3.6.1
- (no CPE)range: < 5.3.6-3.6.1
- (no CPE)range: < 5.3.6-3.6.1
Patches
Vulnerability mechanics
References
2- github.com/lua/lua/commit/a6da1472c0c5e05ff249325f979531ad51533110mitrex_refsource_MISC
- www.lua.org/bugs.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.