Vulnerability CVE-2014-5461: Information
Description
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
Severity: MEDIUM (5.0)
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
[oss-security] 20140821 Re: CVE request: possible overflow in vararg functions |
|
69342 |
|
[oss-security] 20140821 CVE request: possible overflow in vararg functions |
|
DSA-3016 |
|
DSA-3015 |
|
http://www.lua.org/bugs.html#5.2.2-1 |
|
[oss-security] 20140827 Re: Lua CVE request [was Re: CVE request: possible overflow in vararg functions] |
|
59890 | |
60869 | |
USN-2338-1 |
|
openSUSE-SU-2014:1145 |
|
http://advisories.mageia.org/MGASA-2014-0414.html |
|
MDVSA-2015:144 |
|
61411 | |
GLSA-201701-53 | |
GLSA-202305-23 |