Release | Version |
---|---|
buster | 5.3.3-1.1 |
bullseye | 5.3.3-1.1 |
bookworm | 5.3.6-2 |
sid | 5.3.6-2 |
Bug | buster | bullseye | bookworm | sid | Description |
---|---|---|---|---|---|
CVE-2021-43519 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | Stack overflow in lua_resume of ldo.c in Lua Interpreter 5.1.0~5.4.4 a ... |
CVE-2020-24370 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation faul ... |
CVE-2019-6706 | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | fixed | fixed | Lua 5.3.5 has a use-after-free in lua_upvaluejoin in lapi.c. For examp ... |
Bug | Description |
---|---|
CVE-2022-33099 | An issue in the component luaG_runerror of Lua v5.4.4 and below leads ... |
CVE-2022-28805 | singlevar in lparser.c in Lua from (including) 5.4.0 up to (excluding) ... |
CVE-2021-44647 | Lua v5.4.3 and above are affected by SEGV by type confusion in funcnam ... |
CVE-2020-24371 | lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the ... |
CVE-2020-15945 | Lua through 5.4.0 has a segmentation fault in changedline in ldebug.c ... |
DSA / DLA | Description |
---|---|
DLA-2381-1 | lua5.3 - security update |