singlevar in lparser.c in Lua from... CVE-2022-28805

6.4 AV AC AU C I A
发布: 2022-04-08
修订: 2024-11-21

singlevar in lparser.c in Lua from (including) 5.4.0 up to (excluding) 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.

0%
暂无可用Exp或PoC
当前有4条受影响产品信息