Lua 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members.
CVSS Score
9.8
EPSS Score
0.005
Published
2020-07-21
Page 2