CVE-2022-33099

Public on 2022-07-01

Modified on 2024-05-06

Description

An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.

Severity

Medium

See what this means

CVSS v3 Base Score

5.5

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory	Status
Amazon Linux 1	lua			Not Affected
Amazon Linux 2 - Core	lua			Not Affected
Amazon Linux 2023	lua	2024-02-19	ALAS2023-2024-533	Fixed
Amazon Linux 2 - Core	lua53			Not Affected