Lucene search
K

46 matches found

UbuntuCve
UbuntuCve
added 2020/07/21 10:15 p.m.29 views

CVE-2020-15889

Lua 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members...

9.8CVSS7.3AI score0.02232EPSS
Exploits1References3
Prion
Prion
added 2020/07/21 10:15 p.m.23 views

Heap overflow

Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free...

6.8CVSS8.6AI score0.02446EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2020/07/21 10:15 p.m.17 views

Heap overflow

Lua 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members...

7.5CVSS9.5AI score0.02232EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2020/07/21 9:35 p.m.20 views

CVE-2020-15889

Lua 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members...

9.8CVSS9.6AI score0.02232EPSS
Exploits1
Cvelist
Cvelist
added 2020/07/21 9:35 p.m.31 views

CVE-2020-15889

Lua 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members...

9.6AI score0.02232EPSS
Exploits1References3
CVE
CVE
added 2020/07/21 9:35 p.m.64 views

CVE-2020-15889

CVE-2020-15889 concerns Lua 5.4.0 with a getobjname heap-based buffer over-read caused by lgc.c markold handling insufficient list members. Affects Lua 5.4.0; upstream fix is to upgrade to 5.4.1 (per Arch Linux ASA-202010-5 and related advisories). Impact is described as remote code execution in ...

9.8CVSS9.4AI score0.02232EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder