CVE-2024-25176

Опубликовано: 07 июл. 2025

Источник: debian

Описание

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.

Пакет	Статус	Версия исправления	Релиз	Тип
luajit	fixed	2.1.0+openresty20240314-1		package
luajit	fixed	2.1.0~beta3+git20220320+dfsg-4.1+deb12u1	bookworm	package

https://github.com/LuaJIT/LuaJIT/issues/1149
Fixed by: https://github.com/LuaJIT/LuaJIT/commit/343ce0edaf3906a62022936175b2f5410024cbfc (v2.1)

CVE-2024-25176

CVSS3: 9.8

ubuntu

7 месяцев назад

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.

CVE-2024-25176

CVSS3: 1.9

redhat

7 месяцев назад

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.

CVE-2024-25176

CVSS3: 9.8

nvd

7 месяцев назад

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.

CVE-2024-25176

CVSS3: 9.8

msrc

7 месяцев назад

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.

GHSA-xvfg-m24j-r4pm

CVSS3: 9.8

github

7 месяцев назад

LuaJIT through 2.1 has a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.