ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31). Reference: http://lua-users.org/lists/lua-l/2020-07/msg00324.html Upstream commit: https://github.com/lua/lua/commit/a585eae6e7ada1ca9271607a4f48dfb17868ab7b
Update pending for F31/F32, built for F33/F34.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:4510 https://access.redhat.com/errata/RHSA-2021:4510
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-24370