Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
202
security advisorymoderate severitymemory issueopenSUSE Leap 15.3: 2021:2196-1 Moderate lua53 Memory Access Issues
An update that fixes two vulnerabilities is now available. . openSUSE Security Update: Security update for lua53 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:2196-1 Rating: moderate References: #1175448 #1175449 Cross-References: CVE-2020-24370 CVE-2020-24371 CVSS scores: CVE-2020-24370 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-24370 (SUSE): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-24371 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-24371 (SUSE): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for lua53 fixes the following issues: Update to version 5.3.6: - CVE-2020-24371: lgc.c mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage (bsc#1175449) - CVE-2020-24370: ldebug.c allows a negation overflow and segmentation fault in getlocal and setlocal (bsc#1175448) - Long brackets with a huge number of '=' overflow some internal buffer arithmetic. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-2196=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): liblua5_3-5-5.3.6-3.6.1 liblua5_3-5-debuginfo-5.3.6-3.6.1 lua53-5.3.6-3.6.1 lua53-debuginfo-5.3.6-3.6.1 lua53-debugsource-5.3.6-3.6.1 lua53-devel-5.3.6-3.6.1 - openSUSE Leap 15.3 (noarch): lua53-doc-5.3.6-3.6.1 - openSUSE Leap 15.3 (x86_64): liblua5_3-5-32bit-5.3.6-3.6.1 liblua5_3-5-32bit-debuginfo-5.3.6-3.6.1 References: https://www.suse.com/security/cve/CVE-2020-24370.html https://www.suse.com/security/cve/CVE-2020-24371.html https://bugzilla.suse.com/1175448 https://bugzilla.suse.com/1175449 . Patch for lua53 fixes various problems with medium severity, addressing memory access errors and segmentation faults.. openSUSE Security,lua53 Update,memory access issues. . LinuxSecurity.com Team
Jul 10, 2021
OpenSUSE
202
security advisorymoderatesecurity updateopenSUSE Leap 15.2 Security Update: 2021:0962-1 Moderate Lua53 Memory Issue
An update that fixes two vulnerabilities is now available. . openSUSE Security Update: Security update for lua53 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0962-1 Rating: moderate References: #1175448 #1175449 Cross-References: CVE-2020-24370 CVE-2020-24371 CVSS scores: CVE-2020-24370 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-24370 (SUSE): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-24371 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-24371 (SUSE): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for lua53 fixes the following issues: Update to version 5.3.6: - CVE-2020-24371: lgc.c mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage (bsc#1175449) - CVE-2020-24370: ldebug.c allows a negation overflow and segmentation fault in getlocal and setlocal (bsc#1175448) - Long brackets with a huge number of '=' overflow some internal buffer arithmetic. This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-962=1 Package List: - openSUSE Leap 15.2 (i586 x86_64): liblua5_3-5-5.3.6-lp152.5.3.1 liblua5_3-5-debuginfo-5.3.6-lp152.5.3.1 lua53-5.3.6-lp152.5.3.1 lua53-debuginfo-5.3.6-lp152.5.3.1 lua53-debugsource-5.3.6-lp152.5.3.1 lua53-devel-5.3.6-lp152.5.3.1 - openSUSE Leap 15.2 (noarch): lua53-doc-5.3.6-lp152.5.3.1 - openSUSE Leap 15.2 (x86_64): liblua5_3-5-32bit-5.3.6-lp152.5.3.1 liblua5_3-5-32bit-debuginfo-5.3.6-lp152.5.3.1 References: https://www.suse.com/security/cve/CVE-2020-24370.html https://www.suse.com/security/cve/CVE-2020-24371.html https://bugzilla.suse.com/1175448 https://bugzilla.suse.com/1175449 . The lua53 patch addresses two specific problems; refer to advisory openSUSE-SU-2021:0962-1 for comprehensive information on the correction and impacted items.. openSUSE Security,lua patch,memory access issue,segmentation fault,software update. . LinuxSecurity.com Team
Jul 02, 2021
OpenSUSE
202
security advisorymoderatesecurity updateopenSUSE: 2019:0175-1 Moderate: Lua53 Use-After-Free Fix
An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for lua53 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:0175-1 Rating: moderate References: #1123043 Cross-References: CVE-2019-6706 Affected Products: openSUSE Leap 15.0 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for lua53 fixes the following issues: Security issue fixed: - CVE-2019-6706: Fixed a use-after-free bug in the lua_upvaluejoin function of lapi.c (bsc#1123043) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-175=1 Package List: - openSUSE Leap 15.0 (i586 x86_64): liblua5_3-5-5.3.4-lp150.2.3.1 liblua5_3-5-debuginfo-5.3.4-lp150.2.3.1 lua53-5.3.4-lp150.2.3.1 lua53-debuginfo-5.3.4-lp150.2.3.1 lua53-debugsource-5.3.4-lp150.2.3.1 lua53-devel-5.3.4-lp150.2.3.1 - openSUSE Leap 15.0 (noarch): lua53-doc-5.3.4-lp150.2.3.1 - openSUSE Leap 15.0 (x86_64): liblua5_3-5-32bit-5.3.4-lp150.2.3.1 liblua5_3-5-32bit-debuginfo-5.3.4-lp150.2.3.1 References: https://www.suse.com/security/cve/CVE-2019-6706.html https://bugzilla.suse.com/1123043 -- . openSUSE Security Update: Security update for lua53 ________________________________________________. update, security, fixes, vulnerability, opensuse. . LinuxSecurity.com Team
Feb 14, 2019
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!