Vulnerability identifier: #VU45993
Vulnerability risk: Medium
Exploitation vector: Network
The vulnerability allows a remote non-authenticated attacker to perform service disruption.
lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.
Install update from vendor's website.
Vulnerable software versions
Fixed software versions
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?