VYPR

rpm package

suse/lua53&distro=SUSE Linux Enterprise Module for Basesystem 15

pkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015

Vulnerabilities (1)

  • CVE-2019-6706Jan 23, 2019
    affected < 5.3.4-3.3.2fixed 5.3.4-3.3.2

    Lua 5.3.5 has a use-after-free in lua_upvaluejoin in lapi.c. For example, a crash outcome might be achieved by an attacker who is able to trigger a debug.upvaluejoin call in which the arguments have certain relationships.