CVE-2021-44647

Опубликовано: 11 янв. 2022

Источник: debian

EPSS Низкий

Описание

Lua v5.4.3 and above are affected by SEGV by type confusion in funcnamefromcode function in ldebug.c which can cause a local denial of service.

Пакет	Статус	Версия исправления	Релиз	Тип
lua5.4	fixed	5.4.4-1		package
lua5.4	no-dsa		bullseye	package
lua5.3	not-affected			package
lua5.2	not-affected			package
lua5.1	not-affected			package
lua50	not-affected			package

http://lua-users.org/lists/lua-l/2021-11/msg00195.html
http://lua-users.org/lists/lua-l/2021-11/msg00204.html
Fixed by: https://github.com/lua/lua/commit/1de95e97ef65632a88e08b6184bd9d1ceba7ec2f

EPSS

Процентиль: 6%

0.00023

Низкий

CVE-2021-44647

CVSS3: 5.5

ubuntu

около 4 лет назад

Lua v5.4.3 and above are affected by SEGV by type confusion in funcnamefromcode function in ldebug.c which can cause a local denial of service.

CVE-2021-44647

CVSS3: 5.5

redhat

около 4 лет назад

Lua v5.4.3 and above are affected by SEGV by type confusion in funcnamefromcode function in ldebug.c which can cause a local denial of service.

CVE-2021-44647

CVSS3: 5.5

nvd

около 4 лет назад

Lua v5.4.3 and above are affected by SEGV by type confusion in funcnamefromcode function in ldebug.c which can cause a local denial of service.

CVE-2021-44647

CVSS3: 5.5

msrc

почти 4 года назад

Описание отсутствует

GHSA-wvx9-9phh-9j3h

CVSS3: 5.5

github

около 4 лет назад

Lua 5.4.4 and 5.4.2 are affected by SEGV by type confusion in funcnamefromcode function in ldebug.c which can cause a local denial of service.

EPSS

Процентиль: 6%

0.00023

Низкий