LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an unsinking of IR_FSTORE for NULL metatable, which leads to Denial of Service (DoS).

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03378-1 advisory.

    - CVE-2024-25176: Fixed stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c (bsc#1246077)
    - CVE-2024-25177: Fixed unsinking of IR_FSTORE for NULL metatable (bsc#1246078)
    - CVE-2024-25178: Fixed out-of-bounds read in the stack-overflow handler in lj_state.c (bsc#1246079)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4283 advisory.

    -------------------------------------------------------------------------     Debian LTS Advisory DLA-4283-1                debian-lts@lists.debian.org     https://www.debian.org/lts/security/                       Guilhem Moulin     August 25, 2025                               https://wiki.debian.org/LTS
    -------------------------------------------------------------------------

    Package        : luajit     Version        : 2.1.0~beta3+dfsg-5.3+deb11u1     CVE ID         : CVE-2019-19391 CVE-2020-15890 CVE-2020-24372 CVE-2024-25176                      CVE-2024-25177 CVE-2024-25178     Debian Bug     : 946053 966148

    Multiple vulnerabilities were found in luajit, a just in time compiler     for the Lua programming language, which could lead to denial of service.

    CVE-2019-19391

        It was discovered that debug.getinfo() has a type confusion issue         that leads to arbitrary memory write or read operations, because         certain cases involving valid stack levels and `>` options are         mishandled.

        NOTE: The LuaJIT project owner disputes the vulnerability and states         that the debug library is unsafe by design.

    CVE-2020-15890

        Yongheng Chen discovered an out-of-bounds read because `__gc`         handler frame traversal is mishandled.

    CVE-2020-24372

        Yongheng Chen discovered out-of-bounds read in lj_err_run().

    CVE-2024-25176

        Kutyavin Maxim discovered a stack-buffer-overflow in         lj_strfmt_wfnum().

    CVE-2024-25177

        Kutyavin Maxim discovered an unsinking of IR_FSTORE for NULL         metatable.

    CVE-2024-25178

        Kutyavin Maxim discovered an out-of-bounds read in the         stack-overflow handler.

    For Debian 11 bullseye, these problems have been fixed in version     2.1.0~beta3+dfsg-5.3+deb11u1.

    We recommend that you upgrade your luajit packages.

    For the detailed security status of luajit please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/luajit

    Further information about Debian LTS security advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://wiki.debian.org/LTS     Attachment:
    signature.asc     Description: PGP signature

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02886-1 advisory.

    - CVE-2024-25176: Fixed stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c (bsc#1246077)
    - CVE-2024-25177: Fixed unsinking of IR_FSTORE for NULL metatable (bsc#1246078)
    - CVE-2024-25178: Fixed ut-of-bounds read in the stack-overflow handler in lj_state.c (bsc#1246079)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an unsinking of IR_FSTORE for NULL     metatable, which leads to Denial of Service (DoS). (CVE-2024-25177)

Note that Nessus relies on the presence of the package as reported by the vendor.

ID	Name	Product	Family	Severity
266012	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : luajit (SUSE-SU-2025:03378-1)	Nessus	SuSE Local Security Checks	critical
255190	Debian dla-4283 : libluajit-5.1-2 - security update	Nessus	Debian Local Security Checks	critical
252927	openSUSE 15 Security Update : lua51-luajit (SUSE-SU-2025:02886-1)	Nessus	SuSE Local Security Checks	critical
246869	Linux Distros Unpatched Vulnerability : CVE-2024-25177	Nessus	Misc.	high

Detections

Analytics

CVE-2024-25177

high

Tenable Plugins

critical

critical

critical

high