OSV-2021-542

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/lua/OSV-2021-542.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-542
Published
2021-03-21T00:00:57.635576Z
Modified
2022-04-13T03:31:48.822497Z
Summary
Heap-buffer-overflow in luaG_getfuncline
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32279

Crash type: Heap-buffer-overflow READ 1
Crash state:
luaG_getfuncline
luaG_runerror
luaD_growstack
References

Affected packages

OSS-Fuzz / lua

Package

Name
lua
Purl
pkg:generic/lua

Affected ranges

Type
GIT
Repo
https://github.com/lua/lua
Events
Introduced
5d8ce05b3f6fad79e37ed21c1076e47a322472c6
Fixed
eadd8c7178c79c814ecca9652973a9b9dd4cc71b
Fixed
ad3942adba574c9d008c99ce2785a5af19d146bf

Affected versions

v5.*

v5.4.2

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific 

{
    "fixed_range": "eadd8c7178c79c814ecca9652973a9b9dd4cc71b:ad3942adba574c9d008c99ce2785a5af19d146bf"
}