Search CVE reports
1 – 4 of 4 results
CVE-2021-43519
Low priorityStack overflow in lua_resume of ldo.c in Lua Interpreter 5.1.0~5.4.4 allows attackers to perform a Denial of Service via a crafted script file.
45 affected packages
ardour, bam, blobby, ceph, darktable...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ardour | Not affected | Not affected | Not affected | Not affected | Not affected |
bam | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
blobby | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
ceph | Not affected | Not affected | Not affected | Not affected | Not affected |
darktable | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
eja | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
emscripten | Needs evaluation | Needs evaluation | — | Needs evaluation | Needs evaluation |
enigma | Not affected | Not affected | Not affected | Not affected | Not affected |
freeciv | Not affected | Not affected | Not affected | Not affected | Not affected |
freedroidrpg | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
fs-uae | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
golly | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
goxel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
grub2 | Not affected | Not affected | Not affected | Not affected | Not affected |
gtk2-engines | Not affected | Not affected | Not affected | Not affected | Not affected |
haskell-hslua | Not affected | Not affected | Not affected | Not affected | Not affected |
hedgewars | Not affected | Not affected | Not affected | Not affected | Not affected |
lua5.1 | Not affected | Not affected | Not affected | Not affected | Not affected |
lua5.2 | Not affected | Not affected | Not affected | Not affected | Not affected |
lua5.3 | Not affected | Not affected | Not affected | Not affected | Not affected |
lua5.4 | Not affected | Not affected | Not in release | Not in release | Not in release |
lua50 | Not in release | Not in release | Not affected | Not affected | Not affected |
luajit | Not affected | Not affected | Not affected | Not affected | Not affected |
mame | Not affected | Not affected | Not affected | Not affected | Not affected |
naev | Needs evaluation | Needs evaluation | Needs evaluation | — | Ignored |
openscenegraph | Not affected | Not affected | Not affected | Not affected | Not affected |
redis | Not affected | Not affected | Not affected | Not affected | Not affected |
rust-lua52-sys | Needs evaluation | Needs evaluation | Needs evaluation | — | Ignored |
scite | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
scorched3d | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
scummvm | Not affected | Not affected | Not affected | Not affected | Not affected |
spring | Not affected | Not affected | Not affected | Not affected | Not affected |
syslinux | Not affected | Not affected | Not affected | Not affected | Not affected |
syslinux-legacy | Not in release | Not in release | Not affected | Not affected | Not affected |
tagua | Not affected | Not affected | Not affected | Not affected | Not affected |
tarantool | Needs evaluation | Needs evaluation | Needs evaluation | — | Needs evaluation |
texlive-bin | Not affected | Not affected | Not affected | Not affected | Not affected |
tup | Needs evaluation | Needs evaluation | Needs evaluation | — | Ignored |
ufoai | Not affected | Not affected | Not affected | Not affected | Not affected |
vifm | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
wcc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
wesnoth | — | — | — | — | Ignored |
widelands | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
xmoto | Not affected | Not affected | Not affected | Not affected | Not affected |
zfs-linux | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2020-24372
Medium priorityLuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in lj_err.c.
1 affected package
luajit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
luajit | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
CVE-2020-15890
Low prioritySome fixes available 1 of 9
LuaJit through 2.1.0-beta3 has an out-of-bounds read because __gc handler frame traversal is mishandled.
1 affected package
luajit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
luajit | Not affected | Vulnerable | Vulnerable | Vulnerable | Fixed |
CVE-2019-19391
Low priority** DISPUTED ** In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases involving valid...
1 affected package
luajit
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
luajit | Not affected | Not affected | Not affected | Not affected | Not affected |