48 matches found
JLSEC-2026-558
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.05.4.3 allows attackers to perform Sandbox Escape via a crafted script file...
JLSEC-2026-559
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
EUVD-2023-1825
Malicious code in bioql PyPI...
CVE-2021-37692
TensorFlow is an end-to-end open source platform for machine learning. In affected versions under certain conditions, Go code can trigger a segfault in string deallocation. For string tensors, C.TFTStringDealloc is called during garbage collection within a finalizer function. However, tensor...
Race Condition
Overview Affected versions of this package are vulnerable to Race Condition during the namespace deletion process in deleteAllContent in namespacedresourcesdeleter.go. An attacker can bypass network restrictions because network policies are deleted before the pods they are meant to protect. All...
BIT-LUA-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
Huawei EulerOS: Security Advisory for lua (EulerOS-SA-2023-2763)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Denial Of Services (DoS)
lua5.4 is vulnerable to Denial Of Services DoS. The vulnerability exists because the erroneous finalizer call during a tail call leads to a heap-based buffer over-read, allowing an attacker to cause an application crash...
SUSE CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
AZL-26047 CVE-2021-45985 affecting package lua for versions less than 5.4.3-5
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
AZL-26158 CVE-2021-45985 affecting package ntopng for versions less than 5.2.1-2
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
DEBIAN-CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
Heap overflow
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
UBUNTU-CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
CVE-2021-45985
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...