Lucene search
RedHatRHSA-2023:0957HistoryFeb 28, 2023 - 7:53 a.m.
(RHSA-2023:0957) Moderate: lua security update
2023-02-2807:53:03
access.redhat.com
10
lua
security update
sandbox escape
stack overflow
dos
crafted script file
0.001 Low
EPSS
Percentile
41.0%
The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language.
Security Fix(es):
-
lua: use after free allows Sandbox Escape (CVE-2021-44964)
-
lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file (CVE-2021-43519)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | ppc64le | lua-libs-debuginfo | < 5.4.4-2.el9_1 | lua-libs-debuginfo-5.4.4-2.el9_1.ppc64le.rpm |
| RedHat | 9 | x86_64 | lua | < 5.4.4-2.el9_1 | lua-5.4.4-2.el9_1.x86_64.rpm |
| RedHat | 9 | ppc64le | lua-devel | < 5.4.4-2.el9_1 | lua-devel-5.4.4-2.el9_1.ppc64le.rpm |
| RedHat | 9 | i686 | lua-libs-debuginfo | < 5.4.4-2.el9_1 | lua-libs-debuginfo-5.4.4-2.el9_1.i686.rpm |
| RedHat | 9 | i686 | lua-debugsource | < 5.4.4-2.el9_1 | lua-debugsource-5.4.4-2.el9_1.i686.rpm |
| RedHat | 9 | x86_64 | lua-debuginfo | < 5.4.4-2.el9_1 | lua-debuginfo-5.4.4-2.el9_1.x86_64.rpm |
| RedHat | 9 | s390x | lua-devel | < 5.4.4-2.el9_1 | lua-devel-5.4.4-2.el9_1.s390x.rpm |
| RedHat | 9 | s390x | lua-libs | < 5.4.4-2.el9_1 | lua-libs-5.4.4-2.el9_1.s390x.rpm |
| RedHat | 9 | ppc64le | lua-debuginfo | < 5.4.4-2.el9_1 | lua-debuginfo-5.4.4-2.el9_1.ppc64le.rpm |
| RedHat | 9 | ppc64le | lua-libs | < 5.4.4-2.el9_1 | lua-libs-5.4.4-2.el9_1.ppc64le.rpm |
Related
nessus
nessus
RHEL 9 : lua (RHSA-2023:0957)
2023-02-28 00:00:00
AlmaLinux 9 : lua (ALSA-2023:0957)
2023-02-28 00:00:00
Oracle Linux 9 : lua (ELSA-2023-0957)
2023-02-28 00:00:00
osv
osv
Moderate: lua security update
2023-04-06 15:53:31
Moderate: lua security update
2023-02-28 00:00:00
BIT-lua-2021-44964
2024-03-06 10:55:59
rocky
rocky
lua security update
2023-04-06 15:53:31
almalinux
almalinux
Moderate: lua security update
2023-02-28 00:00:00
redhat
redhat
(RHSA-2023:1211) Moderate: lua security update
2023-03-14 13:19:06
oraclelinux
oraclelinux
lua security update
2023-02-28 00:00:00
debiancve
debiancve
CVE-2021-44964
2022-03-14 15:15:09
CVE-2021-43519
2021-11-09 13:15:08
prion
prion
Double free
2022-03-14 15:15:00
Stack overflow
2021-11-09 13:15:00
nvd
nvd
CVE-2021-43519
2021-11-09 13:15:08
CVE-2021-44964
2022-03-14 15:15:09
veracode
veracode
Privilege Escalation
2022-06-12 06:54:04
Denial Of Service (DoS)
2022-02-09 05:05:56
cve
cve
CVE-2021-44964
2022-03-14 15:15:09
CVE-2021-43519
2021-11-09 13:15:08
redhatcve
redhatcve
CVE-2021-44964
2022-03-16 15:06:22
CVE-2021-43519
2022-01-28 10:02:24
cnvd
cnvd
Lua Resource Management Error Vulnerability
2022-03-28 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2431
2024-06-17 08:56:35
openvas
openvas
Fedora: Security Advisory for lua (FEDORA-2022-e6b2bd5b50)
2022-02-08 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: lua-5.4.4-1.fc35
2022-02-08 01:13:10
[SECURITY] Fedora 34 Update: lua-5.4.4-1.fc34
2022-02-17 03:06:39
ubuntucve
ubuntucve
CVE-2021-43519
2021-11-09 00:00:00
CVE-2021-44964
2022-03-14 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-43519 affecting package lua for versions less than 5.4.3-1
2022-04-09 06:51:52
CVE-2021-44964 affecting package lua for versions less than 5.4.4-1
2023-06-02 21:37:28
cvelist
cvelist
CVE-2021-43519
2021-11-09 12:26:22
CVE-2021-44964
2022-03-14 14:24:51
photon
photon
Critical Photon OS Security Update - PHSA-2021-0130
2021-11-29 00:00:00
Critical Photon OS Security Update - PHSA-2021-4.0-0130
2021-11-28 00:00:00
Critical Photon OS Security Update - PHSA-2022-0168
2022-04-01 00:00:00