SUSE-SU-2021:2196-1 -- SLES lua53, liblua5_3-5ID: oval:org.secpod.oval:def:89047108 | Date: (C)2022-10-21 (M)2023-11-13 |
Class: PATCH | Family: unix |
This update for lua53 fixes the following issues: Update to version 5.3.6: - CVE-2020-24371: lgc.c mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage - CVE-2020-24370: ldebug.c allows a negation overflow and segmentation fault in getlocal and setlocal - Long brackets with a huge number of "=" overflow some internal buffer arithmetic.
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP3 |
SUSE Linux Enterprise Desktop 15 SP2 |
SUSE Linux Enterprise Desktop 15 SP3 |