Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Ubuntu 16.04 Lua5.1 Important Denial of Service Vulnerability USN-8262-1

ubuntu
Calendar Grey May 8, 2026
Dist Ubuntu Esm H88
Lua vulnerability could allow crash or arbitrary code execution. Update Ubuntu 16.04 LTS for security.
Lua could be made to crash or run programs as your login if it opened a specially crafted file.

Summary

Lua could be made to crash or run programs as your login if it

opened a specially crafted file.

Software Description:

- lua5.1: Lua is an embeddable scripting language

Details:

It was discovered that the Lua parser incorrectly handled garbage collection

when processing specially crafted Lua scripts. A remote attacker could possibly

use this issue to cause a denial of service or execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS
  liblua5.1-0                     5.1.5-8ubuntu1+esm1
                                  Available with Ubuntu Pro
  lua5.1                          5.1.5-8ubuntu1+esm1
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8262-1

CVE-2025-49844

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8262-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here