Description

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the stack-overflow handler in lj_state.c.

INFO

Published Date :

2025-07-07T00:00:00.000Z

Last Modified :

2025-11-03T18:08:17.630Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-25178 vulnerability.

Vendors Products
Luajit
  • Luajit
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-25178.

URL Resource
https://gist.github.com/pwnhacker0x18/423b4292f301ab274b42d5ed6e0b87d8 cve-icon cve-icon cve-icon
https://github.com/LuaJIT/LuaJIT/commit/defe61a56751a0db5f00ff3ab7b8f45436ba74c8 cve-icon cve-icon cve-icon
https://github.com/LuaJIT/LuaJIT/issues/1152 cve-icon cve-icon cve-icon cve-icon
https://github.com/openresty/luajit2/commit/defe61a56751a0db5f00ff3ab7b8f45436ba74c8 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/08/msg00022.html cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-25178 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-25178 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact