OSV-2021-512

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/lua/OSV-2021-512.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-512
Published
2021-03-11T00:01:02.762585Z
Modified
2022-04-13T03:30:34.129630Z
Summary
Heap-buffer-overflow in luaG_getfuncline
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31892

Crash type: Heap-buffer-overflow READ 1
Crash state:
luaG_getfuncline
luaG_runerror
luaD_growstack
References

Affected packages

OSS-Fuzz / lua

Package

Name
lua
Purl
pkg:generic/lua

Affected ranges

Type
GIT
Repo
https://github.com/lua/lua
Events
Introduced
5d8ce05b3f6fad79e37ed21c1076e47a322472c6
Fixed
e7803f7dbcdc966ab1f9db143424ee811ab1a398
Fixed
ad3942adba574c9d008c99ce2785a5af19d146bf

Affected versions

v5.*

v5.4.2

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "fixed_range": "e7803f7dbcdc966ab1f9db143424ee811ab1a398:ad3942adba574c9d008c99ce2785a5af19d146bf"
}