summaryrefslogtreecommitdiff
path: root/system/lua5.3/CVE-2019-6706.patch
diff options
context:
space:
mode:
authorMax Rees <maxcrees@me.com>2019-06-21 00:53:52 -0400
committerMax Rees <maxcrees@me.com>2019-06-21 00:53:52 -0400
commit976181630770f5d6060be745299ac55d6aada462 (patch)
tree51fabe7111d45bc0917a872dc35551834ce8c228 /system/lua5.3/CVE-2019-6706.patch
parent63771aaa77f749ca07d33421525d8bd23ff9d980 (diff)
downloadpackages-976181630770f5d6060be745299ac55d6aada462.tar.gz
packages-976181630770f5d6060be745299ac55d6aada462.tar.bz2
packages-976181630770f5d6060be745299ac55d6aada462.tar.xz
packages-976181630770f5d6060be745299ac55d6aada462.zip
system/lua5.3: patch for CVE-2019-6706
Diffstat (limited to 'system/lua5.3/CVE-2019-6706.patch')
-rw-r--r--system/lua5.3/CVE-2019-6706.patch27
1 files changed, 27 insertions, 0 deletions
diff --git a/system/lua5.3/CVE-2019-6706.patch b/system/lua5.3/CVE-2019-6706.patch
new file mode 100644
index 000000000..c35f81a4a
--- /dev/null
+++ b/system/lua5.3/CVE-2019-6706.patch
@@ -0,0 +1,27 @@
+Lifted from Ubuntu:
+
+https://launchpad.net/ubuntu/+archive/primary/+sourcefiles/lua5.3/5.3.3-1.1ubuntu1/lua5.3_5.3.3-1.1ubuntu1.debian.tar.xz
+0c7d89b1413cc55f3aff5bbd40e5726b7d69b856befbbf32f00f58588dc4ce81
+
+--- a/src/lapi.c
++++ b/src/lapi.c
+@@ -1285,14 +1285,14 @@ LUA_API void *lua_upvalueid (lua_State *
+
+ LUA_API void lua_upvaluejoin (lua_State *L, int fidx1, int n1,
+ int fidx2, int n2) {
+- LClosure *f1;
+- UpVal **up1 = getupvalref(L, fidx1, n1, &f1);
++ UpVal **up1 = getupvalref(L, fidx1, n1, NULL); /* the last parameter not needed */
+ UpVal **up2 = getupvalref(L, fidx2, n2, NULL);
++ if (*up1 == *up2) return; /* Already joined */
++ (*up2)->refcount++;
++ if (upisopen(*up2)) (*up2)->u.open.touched = 1;
++ luaC_upvalbarrier(L, *up2);
+ luaC_upvdeccount(L, *up1);
+ *up1 = *up2;
+- (*up1)->refcount++;
+- if (upisopen(*up1)) (*up1)->u.open.touched = 1;
+- luaC_upvalbarrier(L, *up1);
+ }
+
+