CVE-2014-5461
published 2014-09-04CVE-2014-5461: Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash)…
PriorityP427medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
11.57%
95.5th percentile
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | lua5.1 | < lua5.1 5.1.5-7 (bookworm) | lua5.1 5.1.5-7 (bookworm) |
| debian | lua5.2 | < lua5.1 5.1.5-7 (bookworm) | lua5.1 5.1.5-7 (bookworm) |
| lua | lua | — | — |
| lua | lua | — | — |
| lua | lua | — | — |
| lua | lua | — | — |
| lua | lua | — | — |
| lua | lua | — | — |
| lua | lua | — | — |
| lua | lua | — | — |
| lua | lua | — | — |
| mageia | mageia | — | — |
| mageia | mageia | — | — |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v3hh-4h88-w4mr: Buffer overflow in the vararg functions in ldo
ghsa_unreviewed·2022-05-14
CVE-2014-5461 [MEDIUM] CWE-119 GHSA-v3hh-4h88-w4mr: Buffer overflow in the vararg functions in ldo
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
OSV
CVE-2014-5461: Buffer overflow in the vararg functions in ldo
osv·2014-09-04·CVSS 5.0
CVE-2014-5461 [MEDIUM] CVE-2014-5461: Buffer overflow in the vararg functions in ldo
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
Ubuntu
Lua vulnerability
vendor_ubuntu·2014-09-03
CVE-2014-5461 Lua vulnerability
Title: Lua vulnerability
Summary: Lua could be made to crash or run programs.
It was discovered that Lua incorrectly handled certain vararg functions
with a large number of fixed parameters. An attacker could use this issue
to cause Lua applications to crash, resulting in a denial of service, or
possibly execute arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2014-5461: lua5.1 - Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before...
vendor_debian·2014·CVSS 5.0
CVE-2014-5461 [MEDIUM] CVE-2014-5461: lua5.1 - Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before...
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
Scope: local
bookworm: resolved (fixed in 5.1.5-7)
bullseye: resolved (fixed in 5.1.5-7)
forky: resolved (fixed in 5.1.5-7)
sid: resolved (fixed in 5.1.5-7)
trixie: resolved (fixed in 5.1.5-7)
Red Hat
lua: overflow flaw in vararg functions
vendor_redhat·2013-04-17·CVSS 5.0
CVE-2014-5461 [MEDIUM] CWE-119 lua: overflow flaw in vararg functions
lua: overflow flaw in vararg functions
Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.
Statement: This issue affects the versions of lua as shipped with Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this issue as having Moderate security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Package: rpm (Red Hat Enterprise Linux 5) - Not affected
Package: lua (Red Hat Enterprise Linux 6) - Will not fix
Package: lua (Red Hat Enterprise Linux 7) -
No detection rules found.
No public exploits indexed.
arXiv
One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware
arxiv_fulltext·2022-12-29
One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware
One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware
## Abstract
Currently, the development of IoT firmware heavily depends on third-party components (TPCs) to improve development efficiency. Nevertheless, TPCs are not secure, and the vulnerabilities in TPCs will influence the security of IoT firmware. Existing works pay less attention to the vulnerabilities caused by TPCs, and we still lack a comprehensive understanding of the security impact of TPC vulnerability against firmware. To fill in the knowledge gap, we design and implement , which leverages syntactical features and control-flow graph features to detect the TPCs in firmware, and then recognizes the corresponding vulnerabilities. Based on , we present the first l
arXiv
Threat Assessment in Machine Learning based Systems
arxiv_fulltext·2022-06-30
Threat Assessment in Machine Learning based Systems
Threat Assessment in Machine Learning based Systems
Lionel Nganyewou Tidjon and Foutse Khomh, Senior Member, IEEE
The authors are with Polytechnique Montréal, Montréal, QC H3C 3A7, Canada.
E-mail: \lionel.tidjon, foutse.khomh\@polymtl.ca
## Abstract
Machine learning is a field of artificial intelligence (AI) that is becoming essential for several critical systems, making it a good target for threat actors. Threat actors exploit different Tactics, Techniques, and Procedures (TTPs) against the confidentiality, integrity, and availability of Machine Learning (ML) systems.
During the ML
cycle, they exploit adversarial TTPs to poison data and fool ML-based systems. In recent years, multiple security practices have been proposed for traditional systems but they are not enough to cope with th
Bugzilla
CVE-2014-5461 lua: overflow flaw in vararg functions
bugzilla·2014-08-21·CVSS 5.0
CVE-2014-5461 [MEDIUM] CVE-2014-5461 lua: overflow flaw in vararg functions
CVE-2014-5461 lua: overflow flaw in vararg functions
An overflow flaw was fixed in Lua 5.2.2:
http://www.lua.org/bugs.html#5.2.2-1
This could cause the application to crash or, potentially, execute arbitrary code. One way an attacker could trigger this issue is if they can control parameters to a loadstring call (an eval in Lua, http://en.wikipedia.org/wiki/Eval#Lua).
Although Fedora 20 has 5.2.2, the issue is not resolved there.
Discussion:
Created lua tracking bugs for this issue:
Affects: fedora-all [bug 1132307]
Affects: epel-5 [bug 1132308]
---
CVE request: http://www.openwall.com/lists/oss-security/2014/08/21/1
---
Issue affects 5.2.2 of which never an update was released to fix it, and 5.2.3 was releasd in Nov 2013 while the bug & patch in 5.2.2 was already published on h
http://advisories.mageia.org/MGASA-2014-0414.htmlhttp://lists.opensuse.org/opensuse-updates/2014-09/msg00030.htmlhttp://secunia.com/advisories/59890http://secunia.com/advisories/60869http://secunia.com/advisories/61411http://www.debian.org/security/2014/dsa-3015http://www.debian.org/security/2014/dsa-3016http://www.lua.org/bugs.html#5.2.2-1http://www.mandriva.com/security/advisories?name=MDVSA-2015:144http://www.openwall.com/lists/oss-security/2014/08/21/1http://www.openwall.com/lists/oss-security/2014/08/21/4http://www.openwall.com/lists/oss-security/2014/08/27/2http://www.securityfocus.com/bid/69342http://www.ubuntu.com/usn/USN-2338-1https://security.gentoo.org/glsa/201701-53https://security.gentoo.org/glsa/202305-23http://advisories.mageia.org/MGASA-2014-0414.htmlhttp://lists.opensuse.org/opensuse-updates/2014-09/msg00030.htmlhttp://secunia.com/advisories/59890http://secunia.com/advisories/60869http://secunia.com/advisories/61411http://www.debian.org/security/2014/dsa-3015http://www.debian.org/security/2014/dsa-3016http://www.lua.org/bugs.html#5.2.2-1http://www.mandriva.com/security/advisories?name=MDVSA-2015:144http://www.openwall.com/lists/oss-security/2014/08/21/1http://www.openwall.com/lists/oss-security/2014/08/21/4http://www.openwall.com/lists/oss-security/2014/08/27/2http://www.securityfocus.com/bid/69342http://www.ubuntu.com/usn/USN-2338-1https://security.gentoo.org/glsa/201701-53https://security.gentoo.org/glsa/202305-23
2014-09-04
Published