CVE-2021-44964
CVE-2021-44964
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows attackers to perform Sandbox Escape via a crafted script file.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://lua-users.org/lists/lua-l/2021-11/msg00186.htmlhttp://lua-users.org/lists/lua-l/2021-12/msg00007.htmlhttp://lua-users.org/lists/lua-l/2021-12/msg00015.htmlhttp://lua-users.org/lists/lua-l/2021-12/msg00030.htmlhttps://github.com/Lua-Project/lua-5.4.4-sandbox-escape-with-new-vulnerability