It was discovered that the Lua parser incorrectly handled garbage collection when processing specially crafted Lua scripts. A remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code.
{ "binaries": [ { "binary_version": "5.1.5-8ubuntu1+esm1", "binary_name": "liblua5.1-0" }, { "binary_version": "5.1.5-8ubuntu1+esm1", "binary_name": "lua5.1" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8262-1.json"
{ "cves": [], "ecosystem": "Ubuntu:Pro:16.04:LTS" }