Vulnerability identifier: #VU45992
Vulnerability risk: Medium
Exploitation vector: Network
The vulnerability allows a remote non-authenticated attacker to perform service disruption.
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).
Install update from vendor's website.
Vulnerable software versions
Fixed software versions
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?