VulnerableCode Package Details - pkg:ebuild/dev-lang/lua@5.2.3

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:ebuild/dev-lang/lua@5.2.3

Essentials
History (3)

purl	pkg:ebuild/dev-lang/lua@5.2.3

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (3)

Vulnerability	Summary	Aliases
VCID-genu-xfqb-ryfk	Out-of-bounds Read singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.	CVE-2022-28805
VCID-sypb-grma-cfhq	Access of Resource Using Incompatible Type ('Type Confusion') Lua are affected by SEGV by type confusion in funcnamefromcode function in ldebug.c which can cause a local denial of service.	CVE-2021-44647
VCID-t68p-xm4z-pqe5	denial of service	CVE-2014-5461

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-04T19:32:38.757924+00:00	Gentoo Importer	Fixing	VCID-genu-xfqb-ryfk	https://security.gentoo.org/glsa/202305-23	38.6.0
2026-06-04T19:32:38.715025+00:00	Gentoo Importer	Fixing	VCID-sypb-grma-cfhq	https://security.gentoo.org/glsa/202305-23	38.6.0
2026-06-04T19:32:38.670810+00:00	Gentoo Importer	Fixing	VCID-t68p-xm4z-pqe5	https://security.gentoo.org/glsa/202305-23	38.6.0