Oval Definition:	oval:com.ubuntu.bionic:def:20196706000
Revision Date: 2019-01-23 Version: 1 Title: CVE-2019-6706 on Ubuntu 18.04 LTS (bionic) - medium. Description: Lua 5.3.5 has a use-after-free in lua_upvaluejoin in lapi.c. For example, a crash outcome might be achieved by an attacker who is able to trigger a debug.upvaluejoin call in which the arguments have certain relationships. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-6706 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information NOT While related to the CVE in some way, the 'lua5.1' package in bionic is not affected (note: 'code not present'). OR NOT While related to the CVE in some way, the 'lua5.2' package in bionic is not affected (note: 'code not present'). OR The 'lua5.3' package in bionic was vulnerable but has been fixed (note: '5.3.3-1ubuntu0.18.04.1'). OR NOT While related to the CVE in some way, the 'lua50' package in bionic is not affected (note: 'code not present').
BACK