openSUSE 15 Security Update : lua51-luajit (SUSE-SU-2025:02886-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02886-1 advisory. - CVE-2024-25176: Fixed stack-buffer-overflow in ljstrfmtwfnum in ljstrfmtnum.c bsc1246077 - CVE-2024-25177: Fixed unsinking of IRFSTORE for NULL...

AZL-65394 CVE-2024-25176 affecting package sysbench for versions less than 1.0.20-3

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in ljstrfmtwfnum in ljstrfmtnum.c...

CVE-2024-25178

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the stack-overflow handler in ljstate.c...

CVE-2024-25178

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the stack-overflow handler in ljstate.c...

CVE-2024-25176

CVE-2024-25176 affects LuaJIT 2.1 and OpenRusty luajit2 builds prior to 2.1-20240626, due to a stack-buffer-overflow in lj_strfmt_wfnum (lj_strfmt_num.c). This can lead to a crash or potentially arbitrary code execution depending on context (as noted in public advisories). A patched version is av...