CVE-2021-45985

Опубликовано: 10 апр. 2023

Источник: ubuntu

Приоритет: medium

CVSS3: 7.5

Описание

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	needs-triage
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-apps/xenial	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage
kinetic	ignored	end of life, was needs-triage

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/focal	not-affected	code not present
esm-apps/jammy	not-affected	code not present
esm-apps/noble	not-affected	code not present
esm-infra-legacy/trusty	not-affected	code not present
esm-infra/xenial	not-affected	code not present
focal	not-affected	code not present
jammy	not-affected	code not present

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	not-affected	code not present
esm-apps/jammy	not-affected	code not present
esm-apps/noble	not-affected	code not present
esm-infra-legacy/trusty	not-affected	code not present
esm-infra/bionic	not-affected	code not present
esm-infra/focal	not-affected	code not present
esm-infra/xenial	not-affected	code not present
focal	not-affected	code not present
jammy	not-affected	code not present

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	not-affected	code not present
esm-apps/noble	not-affected	code not present
esm-infra/bionic	not-affected	code not present
esm-infra/focal	not-affected	code not present
esm-infra/xenial	not-affected	code not present
focal	not-affected	code not present
jammy	not-affected	code not present
kinetic	not-affected	code not present
lunar	not-affected	code not present

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	not-affected	5.4.4-3
esm-apps/jammy	not-affected	5.4.4-1
esm-infra/focal	DNE
focal	DNE
jammy	not-affected	5.4.4-1
kinetic	not-affected	5.4.4-3
lunar	not-affected	5.4.4-3
mantic	not-affected	5.4.4-3
noble	not-affected	5.4.4-3

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	not-affected	code not present
esm-apps/focal	not-affected	code not present
esm-apps/xenial	not-affected	code not present
focal	not-affected	code not present
jammy	DNE
kinetic	DNE
lunar	DNE
mantic	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	not-affected	code not compiled
esm-infra/bionic	not-affected	code not present
esm-infra/focal	not-affected	code not present
esm-infra/xenial	not-affected	code not present
focal	not-affected	code not present
jammy	not-affected	code not compiled
kinetic	not-affected	code not compiled
lunar	not-affected	code not compiled
mantic	not-affected	code not compiled

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage
kinetic	ignored	end of life, was needs-triage
lunar	ignored	end of life, was needs-triage
mantic	ignored	end of life, was needs-triage

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	needs-triage
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-apps/xenial	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage
kinetic	ignored	end of life, was needs-triage

Показывать по

Ссылки на источники

7.5 High

CVSS3

Связанные уязвимости

CVE-2021-45985

CVSS3: 7.5

redhat

больше 2 лет назад

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.

CVE-2021-45985

CVSS3: 7.5

nvd

больше 2 лет назад

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.

CVE-2021-45985

CVSS3: 5.5

msrc

10 месяцев назад

Mitre: CVE-2021-45985 Erroneous finalizer call in Lua leads to a heap-based buffer over-read

CVE-2021-45985

CVSS3: 7.5

debian

больше 2 лет назад

In Lua 5.4.3, an erroneous finalizer called during a tail call leads t ...

GHSA-pxvf-cp3x-784h

CVSS3: 7.5

github

больше 2 лет назад

In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.

7.5 High

CVSS3

CVE-2021-45985

Описание

Пакет darktable

Пакет lua5.1

Пакет lua5.2

Пакет lua5.3

Пакет lua5.4

Пакет lua50

Пакет memcached

Пакет tup

Пакет vifm

Ссылки на источники

Связанные уязвимости