VYPR

rpm package

opensuse/lua53&distro=openSUSE Leap 15.0

pkg:rpm/opensuse/lua53&distro=openSUSE%20Leap%2015.0

Vulnerabilities (1)

  • CVE-2019-6706Jan 23, 2019
    affected < 5.3.4-lp150.2.3.1fixed 5.3.4-lp150.2.3.1

    Lua 5.3.5 has a use-after-free in lua_upvaluejoin in lapi.c. For example, a crash outcome might be achieved by an attacker who is able to trigger a debug.upvaluejoin call in which the arguments have certain relationships.