TROYANOSYVIRUS
Back to CVEs

CVE-2014-5461

N/A

Description

Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.

CVE Details

CVSS v3.1 ScoreN/A
Published9/4/2014
Last Modified4/12/2025
Sourcenvd
Honeypot Sightings0

Affected Products

canonical:ubuntu_linuxdebian:debian_linuxlua:luamageia:mageiaopensuse:opensuse

Weaknesses (CWE)

CWE-119

References

http://advisories.mageia.org/MGASA-2014-0414.html(secalert@redhat.com)
http://lists.opensuse.org/opensuse-updates/2014-09/msg00030.html(secalert@redhat.com)
http://secunia.com/advisories/59890(secalert@redhat.com)
http://secunia.com/advisories/60869(secalert@redhat.com)
http://secunia.com/advisories/61411(secalert@redhat.com)
http://www.debian.org/security/2014/dsa-3015(secalert@redhat.com)
http://www.debian.org/security/2014/dsa-3016(secalert@redhat.com)
http://www.lua.org/bugs.html#5.2.2-1(secalert@redhat.com)
http://www.mandriva.com/security/advisories?name=MDVSA-2015:144(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2014/08/21/1(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2014/08/21/4(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2014/08/27/2(secalert@redhat.com)
http://www.securityfocus.com/bid/69342(secalert@redhat.com)
http://www.ubuntu.com/usn/USN-2338-1(secalert@redhat.com)
https://security.gentoo.org/glsa/201701-53(secalert@redhat.com)
https://security.gentoo.org/glsa/202305-23(secalert@redhat.com)
http://advisories.mageia.org/MGASA-2014-0414.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-09/msg00030.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59890(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/60869(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/61411(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2014/dsa-3015(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2014/dsa-3016(af854a3a-2127-422b-91ae-364da2661108)
http://www.lua.org/bugs.html#5.2.2-1(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2015:144(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2014/08/21/1(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2014/08/21/4(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2014/08/27/2(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/69342(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-2338-1(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201701-53(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/202305-23(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.