Richard Yao 31b4e008f1 LUA: Fix CVE-2014-5461 ...

Apply the fix from upstream.

http://www.lua.org/bugs.html#5.2.2-1
https://www.opencve.io/cve/CVE-2014-5461

It should be noted that exploiting this requires the `SYS_CONFIG`
privilege, and anyone with that privilege likely has other opportunities
to do exploits, so it is unlikely that bad actors could exploit this
unless system administrators are executing untrusted ZFS Channel
Programs.

Reviewed-by: Brian Behlendorf <behlendorf1@llnl.gov>
Signed-off-by: Richard Yao <richard.yao@alumni.stonybrook.edu>
Closes #13949

2022-09-27 16:44:13 -07:00

..

avl

Replace dead opensolaris.org license link

2022-07-11 14:16:13 -07:00

icp

Fix bad free in skein code

2022-09-27 12:36:58 -07:00

lua

LUA: Fix CVE-2014-5461

2022-09-27 16:44:13 -07:00

nvpair

Replace dead opensolaris.org license link

2022-07-11 14:16:13 -07:00

os

Cleanup: Specify unsignedness on things that should not be signed

2022-09-27 16:42:41 -07:00

unicode

Replace dead opensolaris.org license link

2022-07-11 14:16:13 -07:00

zcommon

Enable relatime by default

2022-08-12 14:20:25 -07:00

zfs

Cleanup: Specify unsignedness on things that should not be signed

2022-09-27 16:42:41 -07:00

zstd

Cleanup: Specify unsignedness on things that should not be signed

2022-09-27 16:42:41 -07:00

.gitignore

FreeBSD: Ignore symlink to i386 includes

2022-08-02 16:34:23 -07:00

Kbuild.in

Cleanup dead spa_boot code

2022-09-13 16:40:10 -07:00

Makefile.bsd

Cleanup dead spa_boot code

2022-09-13 16:40:10 -07:00

Makefile.in

autoconf: use include directives instead of recursing down lib

2022-05-10 10:18:11 -07:00