VYPR

rpm package

opensuse/lua53&distro=openSUSE Leap 15.2

pkg:rpm/opensuse/lua53&distro=openSUSE%20Leap%2015.2

Vulnerabilities (2)

  • CVE-2020-24371Aug 17, 2020
    affected < 5.3.6-lp152.5.3.1fixed 5.3.6-lp152.5.3.1

    lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.

  • CVE-2020-24370Aug 17, 2020
    affected < 5.3.6-lp152.5.3.1fixed 5.3.6-lp152.5.3.1

    ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).