summaryrefslogtreecommitdiff
path: root/system/lua5.3/CVE-2020-24370.patch
diff options
context:
space:
mode:
authorA. Wilcox <AWilcox@Wilcox-Tech.com>2020-09-23 03:25:04 +0000
committerA. Wilcox <AWilcox@Wilcox-Tech.com>2020-09-23 03:25:04 +0000
commite0ff67df53d0141688036ece17d592c58b77261d (patch)
tree296a7c5668bd9d4b9a8c094aa84c22e976140e1f /system/lua5.3/CVE-2020-24370.patch
parent3c4177d97553636bbfb373c2d0e9c3448a772a74 (diff)
downloadpackages-e0ff67df53d0141688036ece17d592c58b77261d.tar.gz
packages-e0ff67df53d0141688036ece17d592c58b77261d.tar.bz2
packages-e0ff67df53d0141688036ece17d592c58b77261d.tar.xz
packages-e0ff67df53d0141688036ece17d592c58b77261d.zip
system/lua5.3: Patch CVE-2020-24370
Diffstat (limited to 'system/lua5.3/CVE-2020-24370.patch')
-rw-r--r--system/lua5.3/CVE-2020-24370.patch36
1 files changed, 36 insertions, 0 deletions
diff --git a/system/lua5.3/CVE-2020-24370.patch b/system/lua5.3/CVE-2020-24370.patch
new file mode 100644
index 000000000..0bfce24b1
--- /dev/null
+++ b/system/lua5.3/CVE-2020-24370.patch
@@ -0,0 +1,36 @@
+From b5bc89846721375fe30772eb8c5ab2786f362bf9 Mon Sep 17 00:00:00 2001
+From: Roberto Ierusalimschy <roberto@inf.puc-rio.br>
+Date: Mon, 3 Aug 2020 16:25:28 -0300
+Subject: [PATCH] Fixed bug: Negation overflow in getlocal/setlocal
+
+---
+ ldebug.c | 7 ++++---
+ 1 file changed, 4 insertions(+), 3 deletions(-)
+
+diff --git a/ldebug.c b/ldebug.c
+index e1389296e..bb0e1d4ac 100644
+--- a/src/ldebug.c
++++ b/src/ldebug.c
+@@ -133,10 +133,11 @@ static const char *upvalname (Proto *p, int uv) {
+
+ static const char *findvararg (CallInfo *ci, int n, StkId *pos) {
+ int nparams = clLvalue(ci->func)->p->numparams;
+- if (n >= cast_int(ci->u.l.base - ci->func) - nparams)
++ int nvararg = cast_int(ci->u.l.base - ci->func) - nparams;
++ if (n <= -nvararg)
+ return NULL; /* no such vararg */
+ else {
+- *pos = ci->func + nparams + n;
++ *pos = ci->func + nparams - n;
+ return "(*vararg)"; /* generic name for any vararg */
+ }
+ }
+@@ -148,7 +149,7 @@ static const char *findlocal (lua_State *L, CallInfo *ci, int n,
+ StkId base;
+ if (isLua(ci)) {
+ if (n < 0) /* access to vararg values? */
+- return findvararg(ci, -n, pos);
++ return findvararg(ci, n, pos);
+ else {
+ base = ci->u.l.base;
+ name = luaF_getlocalname(ci_func(ci)->p, n, currentpc(ci));