Description
Lua 5.4.0 (fixed in 5.4.1) has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function.
References (3)
Core 3
Core References
Exploit, Mailing List, Third Party Advisory
http://lua-users.org/lists/lua-l/2020-07/msg00123.html
Patch, Third Party Advisory
https://github.com/lua/lua/commit/a2195644d89812e5b157ce7bac35543e06db05e3
Various Sources
https://www.lua.org/bugs.html#5.4.0-8
Scores
CVSS v3
5.5
EPSS
0.0016
EPSS Percentile
36.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (1)
lua/lua
5.3.1 - 5.4.0
Published
Jul 24, 2020
Tracked Since
Feb 18, 2026