CVE-2020-24342

Опубликовано: 13 авг. 2020

Источник: debian

Описание

Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row.

Пакет	Статус	Версия исправления	Релиз	Тип
lua5.4	fixed	5.4.1-1		package

CVE-2020-24342

CVSS3: 7.8

ubuntu

больше 5 лет назад

Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row.

CVE-2020-24342

CVSS3: 7.8

redhat

больше 5 лет назад

Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row.

CVE-2020-24342

CVSS3: 7.8

nvd

больше 5 лет назад

Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row.

CVE-2020-24342

CVSS3: 7.8

msrc

больше 5 лет назад

Описание отсутствует

GHSA-ggfm-9pxx-qx8r

github

больше 3 лет назад

Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row.