[Git][security-tracker-team/security-tracker][master] Add CVE-2021-45985/lua5.4

Sat Apr 15 09:46:25 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
370005c7 by Salvatore Bonaccorso at 2023-04-15T10:45:34+02:00
Add CVE-2021-45985/lua5.4

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -105046,7 +105046,11 @@ CVE-2021-45987 (Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to
 CVE-2021-45986 (Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contai ...)
 	NOT-FOR-US: Tenda routers
 CVE-2021-45985 (In Lua 5.4.3, an erroneous finalizer called during a tail call leads t ...)
-	TODO: check
+	- lua5.4 5.4.4-1
+	NOTE: https://www.lua.org/bugs.html#5.4.3-11
+	NOTE: https://github.com/lua/lua/commit/cf613cdc6fa367257fc61c256f63d917350858b5 (v5.4.4)
+	NOTE: http://lua-users.org/lists/lua-l/2021-12/msg00019.html
+	TODO: check details, possibly 5.4.y specific, but needs to be double checked
 CVE-2021-4197 (An unprivileged write to the file handler flaw in the Linux kernel's c ...)
 	{DSA-5173-1 DSA-5127-1}
 	- linux 5.15.15-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/370005c7fc3272c77758531b0838220dfbe3415b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/370005c7fc3272c77758531b0838220dfbe3415b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230415/c661fea3/attachment-0001.htm>
