Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit
From: Roberto Ierusalimschy <roberto@...>
Date: Thu, 9 Dec 2021 07:47:31 -0300

> By the way, If you plan the patch to be applied in version 5.4.5 or later,
> may I report this crash into MITRE?

Yes, we plan to fix it in version 5.4. I am not sure I know what is
MITRE, but the report is already public.

-- Roberto

Follow-Ups:
- Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit, Pierre Chapuis

References:
- Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit, 김지회
- Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit, Roberto Ierusalimschy
- Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit, 김지회

Prev by Date: Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit
Next by Date: Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit
Previous by thread: Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit
Next by thread: Re: Crash Analysis: Finalizer Logic in singlestep function can lead to Sandbox Escape Exploit
Index(es):
- Date
- Thread