21 matches found
Amazon Linux 2 : ecs-service-connect-agent, --advisory ALAS2ECS-2025-093 (ALASECS-2025-093)
The version of ecs-service-connect-agent installed on the remote host is prior to v1.34.4.2-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ECS-2025-093 advisory. There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with...
Debian dla-4283 : libluajit-5.1-2 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4283 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4283-1 [email protected]...
SUSE-SU-2025:02886-1 Security update for lua51-luajit
This update for lua51-luajit fixes the following issues: - CVE-2024-25176: Fixed stack-buffer-overflow in ljstrfmtwfnum in ljstrfmtnum.c bsc1246077 - CVE-2024-25177: Fixed unsinking of IRFSTORE for NULL metatable bsc1246078 - CVE-2024-25178: Fixed ut-of-bounds read in the stack-overflow handler i...
Linux Distros Unpatched Vulnerability : CVE-2024-25176
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in ljstrfmtwfnum in ljstrfmtnum.c. CVE-2024-25176 Note that Nessus...
CVE-2024-25176 affecting package luajit for versions less than 2.1.0-27
CVE-2024-25176 affecting package luajit for versions less than 2.1.0-27. A patched version of the package is available...
CVE-2024-25176 affecting package sysbench for versions less than 1.0.20-3
CVE-2024-25176 affecting package sysbench for versions less than 1.0.20-3. A patched version of the package is available...
CBL Mariner 2.0 Security Update: luajit / sysbench (CVE-2024-25176)
The version of luajit / sysbench installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25176 advisory. - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in...
Azure Linux 3.0 Security Update: luajit / sysbench (CVE-2024-25176)
The version of luajit / sysbench installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25176 advisory. - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in...
CVE-2024-25176 affecting package sysbench for versions less than 1.0.20-6
CVE-2024-25176 affecting package sysbench for versions less than 1.0.20-6. A patched version of the package is available...
Fedora: Security Advisory (FEDORA-2025-4430674f97)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : luajit (2025-4430674f97)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-4430674f97 advisory. Fix CVE-2024-25176 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...
Fedora: Security Advisory (FEDORA-2025-b1082e9269)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 42 : luajit (2025-b1082e9269)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-b1082e9269 advisory. Fix CVE-2024-25176 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...
BELL-CVE-2024-25176
Bulletin has no description...
CVE-2024-25176
A stack-based buffer overflow was found in LuaJit. This flaw was uncovered through fuzzing, and no real-world attack exploiting it has been demonstrated. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criter...
CVE-2024-25176
LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in ljstrfmtwfnum in ljstrfmtnum.c...
CVE-2024-25176
LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in ljstrfmtwfnum in ljstrfmtnum.c...
UBUNTU-CVE-2024-25176
LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in ljstrfmtwfnum in ljstrfmtnum.c...
CVE-2024-25176
LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in ljstrfmtwfnum in ljstrfmtnum.c...
CVE-2024-25176
CVE-2024-25176 affects LuaJIT 2.1 and OpenRusty luajit2 builds prior to 2.1-20240626, due to a stack-buffer-overflow in lj_strfmt_wfnum (lj_strfmt_num.c). This can lead to a crash or potentially arbitrary code execution depending on context (as noted in public advisories). A patched version is av...