CVE-2020-24371

Опубликовано: 17 авг. 2020

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.

Ссылки

https://github.com/lua/lua/commit/a6da1472c0c5e05ff249325f979531ad51533110
Patch
Third Party Advisory
https://www.lua.org/bugs.html#5.4.0-10
Exploit
Patch
Release Notes
Vendor Advisory
https://github.com/lua/lua/commit/a6da1472c0c5e05ff249325f979531ad51533110
Patch
Third Party Advisory
https://www.lua.org/bugs.html#5.4.0-10
Exploit
Patch
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:lua:lua:5.4.0:-:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.0046

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-763

Связанные уязвимости

CVE-2020-24371

CVSS3: 5.3

ubuntu

больше 5 лет назад

lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.

CVE-2020-24371

CVSS3: 7.3

redhat

больше 5 лет назад

lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.

CVE-2020-24371

CVSS3: 5.3

msrc

5 месяцев назад

lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.

CVE-2020-24371

CVSS3: 5.3

debian

больше 5 лет назад

lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the ...

GHSA-4m5p-2hm8-9fxm

CVSS3: 5.3

github

больше 3 лет назад

lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.

EPSS

Процентиль: 64%

0.0046

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-763