CVE-2014-5461
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.1063 (10.6%)
Percentil: 93.3%
EPSS: 2026-05-06
Afecta
opensuse:opensusecanonical:ubuntu_linuxdebian:debian_linuxlua:luamageia:mageiaDescripción técnica
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
Publicada: 4/9/2014, 17:55:07
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://advisories.mageia.org/MGASA-2014-0414.html
- http://lists.opensuse.org/opensuse-updates/2014-09/msg00030.html
- http://secunia.com/advisories/59890
- http://secunia.com/advisories/60869
- http://secunia.com/advisories/61411
- http://www.debian.org/security/2014/dsa-3015
- http://www.debian.org/security/2014/dsa-3016
- http://www.lua.org/bugs.html#5.2.2-1