update: lua #1119

dongsupark · 2023-07-17T09:03:42Z

Name: lua
CVEs: CVE-2022-33099
CVSSs: 7.5
Action Needed: update to >= 5.4.6

Summary: An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.

refmap.gentoo: https://bugs.gentoo.org/856463

dongsupark · 2023-09-26T10:34:07Z

will be done in weekly updates flatcar/scripts#1177.

dongsupark added security security concerns advisory security advisory cvss/HIGH > 7 && < 9 assessed CVSS labels Jul 17, 2023

dongsupark added this to Flatcar tactical, release planning, and roadmap Jul 17, 2023

github-project-automation bot moved this to 📝 Needs Triage in Flatcar tactical, release planning, and roadmap Jul 17, 2023

dongsupark moved this from 📝 Needs Triage to 🪵Backlog in Flatcar tactical, release planning, and roadmap Jul 17, 2023

dongsupark moved this from 🪵Backlog to 🌱 Upcoming / Focus in Flatcar tactical, release planning, and roadmap Sep 26, 2023

dongsupark moved this from 🌱 Upcoming / Focus to ⚒️ In Progress in Flatcar tactical, release planning, and roadmap Sep 26, 2023

krnowak mentioned this issue Sep 28, 2023

Weekly portage-stable package updates 2023-09-25 flatcar/scripts#1177

Merged

2 tasks

krnowak closed this as completed in flatcar/scripts#1177 Sep 28, 2023

github-project-automation bot moved this from ⚒️ In Progress to Implemented in Flatcar tactical, release planning, and roadmap Sep 28, 2023

github-actions bot mentioned this issue Nov 9, 2023

Monthly contributions report 2023-09-22 - 2023-10-21 #1244

Closed

dongsupark removed this from Flatcar tactical, release planning, and roadmap Feb 7, 2024

Provide feedback