Re: Memory corruption in in luaV_execute (lua/Test

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Memory corruption in in luaV_execute (lua/Test_lua/lua/lvm.c:1784)
From: Viacheslav Usov <via.usov@...>
Date: Mon, 31 Aug 2020 12:59:12 +0200

On Mon, Aug 31, 2020 at 12:28 PM Luiz Henrique de Figueiredo
<lhf@tecgraf.puc-rio.br> wrote:

> Loading malformed bytecode should not crash Lua.
> Running maliciously crafted bytecode can crash the interpreter.

You are certainly free to make the bytecode loader more robust :)

That said, currently we see "Maliciously crafted binary chunks can
crash the interpreter" in the section on load(), and it is not obvious
at all that this does not apply to load() itself.

Not that the distinctions between "malformed" and "maliciously
crafted" and between "loading" and "running" would make a big
difference to Lua users.

Cheers,
V.

References:
- Memory corruption in in luaV_execute (lua/Test_lua/lua/lvm.c:1784), secwx weizhenvul
- Re: Memory corruption in in luaV_execute (lua/Test_lua/lua/lvm.c:1784), Viacheslav Usov
- Re: Memory corruption in in luaV_execute (lua/Test_lua/lua/lvm.c:1784), Luiz Henrique de Figueiredo

Prev by Date: Re: Memory corruption in in luaV_execute (lua/Test_lua/lua/lvm.c:1784)
Next by Date: Re: Memory corruption in in luaV_execute (lua/Test_lua/lua/lvm.c:1784)
Previous by thread: Re: Memory corruption in in luaV_execute (lua/Test_lua/lua/lvm.c:1784)
Next by thread: Re: Memory corruption in in luaV_execute (lua/Test_lua/lua/lvm.c:1784)
Index(es):
- Date
- Thread