GHSA-pxvf-cp3x-784h

Опубликовано: 10 апр. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.

Ссылки

EPSS

Процентиль: 44%

0.0021

Низкий

7.5 High

CVSS3

CVE ID

CVE-2021-45985

Дефекты

CWE-787

Связанные уязвимости

CVE-2021-45985

CVSS3: 7.5

ubuntu

около 2 лет назад

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.

CVE-2021-45985

CVSS3: 7.5

redhat

около 2 лет назад

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.

CVE-2021-45985

CVSS3: 7.5

nvd

около 2 лет назад

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.

CVE-2021-45985

CVSS3: 5.5

msrc

5 месяцев назад

Mitre: CVE-2021-45985 Erroneous finalizer call in Lua leads to a heap-based buffer over-read

CVE-2021-45985

CVSS3: 7.5

debian

около 2 лет назад

In Lua 5.4.3, an erroneous finalizer called during a tail call leads t ...

EPSS

Процентиль: 44%

0.0021

Низкий

7.5 High

CVSS3

CVE ID

CVE-2021-45985

Дефекты

CWE-787