Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:conan/lua@5.3.5
purl pkg:conan/lua@5.3.5
Next non-vulnerable version 5.4.6
Latest non-vulnerable version 5.4.6
Risk
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-k38z-6c33-vueb
Aliases:
CVE-2020-15945
Buffer Overflow Lua has a segmentation fault in `changedline` in `ldebug.c` (e.g., when called by `luaG_traceexec`) because it incorrectly expects that an `oldpc` value is always updated upon a return of the flow of control to a function.
5.4.6
Affected by 0 other vulnerabilities.
VCID-s7du-gace-j3ev
Aliases:
CVE-2020-15888
arbitrary code execution
5.4.1
Affected by 0 other vulnerabilities.
5.4.6
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-9hw6-zjwq-83gr denial of service CVE-2021-43519

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-04T20:33:25.606698+00:00 GitLab Importer Affected by VCID-k38z-6c33-vueb https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/lua/CVE-2020-15945.yml 38.6.0
2026-06-04T20:33:20.685952+00:00 GitLab Importer Affected by VCID-s7du-gace-j3ev https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/lua/CVE-2020-15888.yml 38.6.0
2026-06-02T04:40:22.326147+00:00 GitLab Importer Fixing VCID-9hw6-zjwq-83gr https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/lua/CVE-2021-43519.yml 38.6.0