CVE-2024-25178

CRITICAL9.1EPSS 0.69%

Published: 7/7/2025Modified: 12/3/2025

Also known as:ALPINE-CVE-2024-25178

Description

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the stack-overflow handler in lj_state.c.

Source	Version	Severity	Vector
osv	CVSS 3.1	CRITICAL9.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H