{"affected":[{"ecosystem_specific":{"binaries":[{"libluajit-5_1-2":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP6","name":"luajit","purl":"pkg:rpm/suse/luajit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libluajit-5_1-2":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP7","name":"luajit","purl":"pkg:rpm/suse/luajit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libluajit-5_1-2":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1","luajit":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP6","name":"luajit","purl":"pkg:rpm/suse/luajit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libluajit-5_1-2":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1","luajit":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP7","name":"luajit","purl":"pkg:rpm/suse/luajit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libluajit-5_1-2":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1","libluajit-5_1-2-32bit":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1","luajit":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1","luajit-devel":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"luajit","purl":"pkg:rpm/opensuse/luajit&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.1.0~beta3+git.1624618403.e9577376-150400.4.5.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for luajit fixes the following issues:\n\n- CVE-2024-25176: Fixed stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c (bsc#1246077)\n- CVE-2024-25177: Fixed unsinking of IR_FSTORE for NULL metatable (bsc#1246078)\n- CVE-2024-25178: Fixed out-of-bounds read in the stack-overflow handler in lj_state.c (bsc#1246079)\n","id":"SUSE-SU-2025:03378-1","modified":"2025-09-26T15:00:31Z","published":"2025-09-26T15:00:31Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202503378-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1246077"},{"type":"REPORT","url":"https://bugzilla.suse.com/1246078"},{"type":"REPORT","url":"https://bugzilla.suse.com/1246079"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-25176"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-25177"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-25178"}],"related":["CVE-2024-25176","CVE-2024-25177","CVE-2024-25178"],"summary":"Security update for luajit","upstream":["CVE-2024-25176","CVE-2024-25177","CVE-2024-25178"]}