3 matches found
CVE-2022-33099
An issue in the component luaGrunerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs...
The vulnerability of the Redis database management system allows a hacker to execute arbitrary Lua bytecode.
The vulnerability of the deps/lua/src/ldo.c component of the Redis database management system is related to incorrect data type conversion. Exploiting this vulnerability allows a malicious actor to execute any Lua bytecode using a specially crafted eval command...
GLSA-201402-07 : Freeciv: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-201402-07 Freeciv: User-assisted execution of arbitrary code The Lua component of Freeciv does not restrict which modules may be loaded by scenario scripts. Impact : A remote attacker could entice a user to open a specially crafte...