Register | Log in

lua5.1

Simple, extensible, embeddable programming language

Choose email to subscribe with

general

source: lua5.1 (main)
version: 5.1.5-8.1
maintainer: John V. Belmonte (DMD)
uploaders: Enrico Tassi [DMD]
arch: all any
std-ver: 3.9.3
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 5.1.5-7.1
oldstable: 5.1.5-8.1
stable: 5.1.5-8.1
testing: 5.1.5-8.1
unstable: 5.1.5-8.1

versioned links

5.1.5-7.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.1.5-8.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

liblua5.1-0 (1 bugs: 0, 1, 0, 0)
liblua5.1-0-dbg (1 bugs: 0, 1, 0, 0)
liblua5.1-0-dev (1 bugs: 0, 1, 0, 0)
lua5.1 (4 bugs: 0, 3, 1, 0)
lua5.1-doc

action needed

3 security issues in stretch high

There are 3 open security issues in stretch.

3 important issues:

CVE-2020-15888: Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free.
CVE-2020-15889: Lua through 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members.
CVE-2020-15945: Lua through 5.4.0 has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function.

Please fix them.

Created: 2020-07-26 Last update: 2020-08-07 06:08

3 security issues in sid high

There are 3 open security issues in sid.

3 important issues:

CVE-2020-15888: Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free.
CVE-2020-15889: Lua through 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members.
CVE-2020-15945: Lua through 5.4.0 has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function.

Please fix them.

Created: 2020-07-26 Last update: 2020-08-07 06:08

3 security issues in buster high

There are 3 open security issues in buster.

3 important issues:

CVE-2020-15888: Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free.
CVE-2020-15889: Lua through 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members.
CVE-2020-15945: Lua through 5.4.0 has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function.

Please fix them.

Created: 2020-07-26 Last update: 2020-08-07 06:08

3 security issues in bullseye high

There are 3 open security issues in bullseye.

3 important issues:

CVE-2020-15888: Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free.
CVE-2020-15889: Lua through 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members.
CVE-2020-15945: Lua through 5.4.0 has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function.

Please fix them.

Created: 2020-07-26 Last update: 2020-08-07 06:08

Standards version of the package is outdated. high

The package is severely out of date with respect to the Debian Policy. The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 3.9.3).

Created: 2014-08-30 Last update: 2020-01-21 05:05

lintian reports 6 warnings normal

Lintian reports 6 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2020-07-29 12:32

Multiarch hinter reports 1 issue(s) low

There are issues with the multiarch metadata for this package.

lua5.1-doc could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2020-08-07 19:41

news

[2016-08-11] lua5.1 5.1.5-8.1 MIGRATED to testing (Debian testing watch)
[2016-08-05] Accepted lua5.1 5.1.5-8.1 (source) into unstable (Aurelien Jarno)
[2015-08-20] lua5.1 5.1.5-8 MIGRATED to testing (Britney)
[2015-08-14] Accepted lua5.1 5.1.5-8 (source amd64 all) into unstable (Enrico Tassi)
[2014-10-25] lua5.1 5.1.5-7.1 MIGRATED to testing (Britney)
[2014-10-14] Accepted lua5.1 5.1.5-7.1 (source all amd64) into unstable (Matthias Klose)
[2014-09-05] lua5.1 5.1.5-7 MIGRATED to testing (Britney)
[2014-09-05] Accepted lua5.1 5.1.4-5+deb6u1 (source all amd64) into squeeze-lts (Holger Levsen)
[2014-09-02] Accepted lua5.1 5.1.5-4+deb7u1 (source all amd64) into proposed-updates->stable-new, proposed-updates (Enrico Tassi)
[2014-08-30] Accepted lua5.1 5.1.5-7 (source all amd64) into unstable (Enrico Tassi)
[2013-08-24] lua5.1 5.1.5-5 MIGRATED to testing (Debian testing watch)
[2013-08-13] Accepted lua5.1 5.1.5-5 (source all amd64) (Enrico Tassi)
[2012-08-20] lua5.1 5.1.5-4 MIGRATED to testing (Debian testing watch)
[2012-07-23] Accepted lua5.1 5.1.5-4 (source all amd64) (Enrico Tassi)
[2012-07-18] Accepted lua5.1 5.1.5-3 (source all amd64) (Enrico Tassi)
[2012-05-23] lua5.1 5.1.5-2 MIGRATED to testing (Debian testing watch)
[2012-05-12] Accepted lua5.1 5.1.5-2 (source all amd64) (Enrico Tassi)
[2012-04-13] lua5.1 5.1.5-1 MIGRATED to testing (Debian testing watch)
[2012-04-02] Accepted lua5.1 5.1.5-1 (source all amd64) (Enrico Tassi)
[2012-01-05] lua5.1 5.1.4-12 MIGRATED to testing (Debian testing watch)
[2011-12-25] Accepted lua5.1 5.1.4-12 (source all amd64) (Enrico Tassi)
[2011-08-05] lua5.1 5.1.4-10 MIGRATED to testing (Debian testing watch)
[2011-07-25] Accepted lua5.1 5.1.4-10 (source all amd64) (Enrico Tassi)
[2011-07-24] Accepted lua5.1 5.1.4-9 (source all amd64) (Enrico Tassi)
[2011-07-24] Accepted lua5.1 5.1.4-8 (source all amd64) (Enrico Tassi)
[2011-07-20] Accepted lua5.1 5.1.4-7 (source all amd64) (Enrico Tassi)
[2011-07-20] Accepted lua5.1 5.1.4-6 (source all amd64) (Enrico Tassi)
[2009-11-18] lua5.1 5.1.4-5 MIGRATED to testing (Debian testing watch)
[2009-11-05] Accepted lua5.1 5.1.4-5 (source all amd64) (Enrico Tassi)
[2009-10-28] lua5.1 5.1.4-4 MIGRATED to testing (Debian testing watch)

1
2

bugs [bug history graph]

all: 8
RC: 0
I&N: 7
M&W: 1
F&P: 0
patch: 0

links

homepage
lintian (0, 6)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 5.1.5-8.1build4
4 bugs

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing