95 matches found
Exploit for Use After Free in Redis
CVE-2025-49844 - Redis Lua Interpreter Exploit !yuri08loveel...
Exploit for Use After Free in Redis
CVE-2025-49844 RediShell - Lab Environment A practical lab...
EUVD-2020-24694
Malware in sbrugna...
EUVD-2019-6885
Malware in sbrugna...
EUVD-2021-30448
Malicious code in bioql PyPI...
EUVD-2021-31762
Malicious code in bioql PyPI...
UBUNTU-CVE-2024-25178
LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the stack-overflow handler in ljstate.c...
ROS-20250624-04
A vulnerability in the Lua script interpreter is related to segmentation errors in changedline in ldebug.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
PT-2025-27561 · Git +1 · Tarantool
Name of the Vulnerable Software and Affected Versions: Lua affected versions not specified Description: The Lua interpreter suffers from a heap-use-after-free issue. The crash state indicates the issue occurs within the lj strfmt pushvf, lua pushfstring, and luaL loadfilex functions...
Linux Distros Unpatched Vulnerability : CVE-2021-44964
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.05.4.3 allows attackers to perform Sandbox Escape via a crafted script file...
Azure Linux 3.0 Security Update: lua / memcached / ntopng (CVE-2021-43519)
The version of lua / memcached / ntopng installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-43519 advisory. - Stack overflow in luaresume of ldo.c in Lua Interpreter 5.1.05.4.4 allows attackers to...
CBL Mariner 2.0 Security Update: lua / memcached / ntopng (CVE-2021-43519)
The version of lua / memcached / ntopng installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-43519 advisory. - Stack overflow in luaresume of ldo.c in Lua Interpreter 5.1.05.4.4 allows attackers to...
BIT-LUA-2021-43519
Stack overflow in luaresume of ldo.c in Lua Interpreter 5.1.05.4.4 allows attackers to perform a Denial of Service via a crafted script file...
Exploit for Heap-based Buffer Overflow in Redis
Improvement of CVE-2022-24834 public exploit Author Convi...
CVE-2021-45985
A heap-based buffer overflow issue was found in Lua Interpreter. The vulnerability can be exploited when an erroneous finalizer calls during a tail call with an invalid stack, triggering an out-of-bounds read, leading to a crash or a denial of service...
lua: use after free allows Sandbox Escape
A flaw was found in the Lua interpreter. This flaw allows an attacker who can have a malicious script executed by the interpreter, to cause a use-after-free issue that may result in a sandbox escape...
lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file
A stack overflow issue was discovered in Lua in the luaresume function of 'ldo.c'. This flaw allows a local attacker to pass a specially crafted file to the Lua Interpreter, causing a crash that leads to a denial of service...
lua: use after free allows Sandbox Escape
A flaw was found in the Lua interpreter. This flaw allows an attacker who can have a malicious script executed by the interpreter, to cause a use-after-free issue that may result in a sandbox escape...
RHEL 9 : lua (RHSA-2023:0957)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0957 advisory. The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also...
Oracle Linux 9 : lua (ELSA-2023-0957)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0957 advisory. - Resolves CVE-2021-43519 - Resolves CVE-2021-44964 - Fix up CVE-2022-33099 patch Tenable has extracted the preceding description block directly from t...