2047672 – (CVE-2021-43519) CVE-2021-43519 lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file

Bug 2047672 (CVE-2021-43519) - CVE-2021-43519 lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file

Summary: CVE-2021-43519 lua: stack overflow in lua_resume of ldo.c allows a DoS via a ...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2021-43519
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2047673 2048364 2048367 2048368 2048369 2048461 2166648 2166649
Blocks:	2047674
TreeView+	depends on / blocked

Reported:	2022-01-28 09:33 UTC by Marian Rehak
Modified:	2023-03-14 17:57 UTC (History)
CC List:	20 users (show)
Fixed In Version:	lua 5.3.5, lua 5.4.4
Doc Type:	If docs needed, set a value
Doc Text:	A stack overflow issue was discovered in Lua in the lua_resume() function of 'ldo.c'. This flaw allows a local attacker to pass a specially crafted file to the Lua Interpreter, causing a crash that leads to a denial of service.
Clone Of:
Environment:
Last Closed:	2023-03-14 17:57:24 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2023:0957	0	None	None	None	2023-02-28 08:19:03 UTC
Red Hat Product Errata	RHSA-2023:1211	0	None	None	None	2023-03-14 13:55:00 UTC

Description Marian Rehak 2022-01-28 09:33:37 UTC

Stack overflow in lua_resume of ldo.c in Lua Interpreter allows attackers to perform a Denial of Service via a crafted script file.

Reference:

http://lua-users.org/lists/lua-l/2021-11/msg00015.html
http://lua-users.org/lists/lua-l/2021-10/msg00123.html

Comment 1 Marian Rehak 2022-01-28 09:34:08 UTC

Created lua tracking bugs for this issue:

Affects: fedora-all [bug 2047673]

Comment 11 errata-xmlrpc 2023-02-28 08:19:00 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2023:0957 https://access.redhat.com/errata/RHSA-2023:0957

Comment 12 errata-xmlrpc 2023-03-14 13:54:58 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Extended Update Support

Via RHSA-2023:1211 https://access.redhat.com/errata/RHSA-2023:1211

Comment 13 Product Security DevOps Team 2023-03-14 17:57:21 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2021-43519

Note You need to log in before you can comment on or make changes to this bug.

4le
bdettelb
caswilli
csutherl
drjohnson1
fjansen
gzaronik
jburrell
jclere
jwon
kaycoth
lua-packagers-sig
mhroncok
michel
mturk
packaging-team-maint
pjindal
rob.myers
spotrh
szappis