CVE Vulnerabilities

CVE-2024-25178

Published: Jul 07, 2025 | Modified: Jul 07, 2025

CVSS 3.x

N/A

Source:

NVD

CVSS 2.x

RedHat/V2

RedHat/V3

Ubuntu

Vulnerability-free packages from our partners

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-25178
CWE	https://cwe.mitre.org/data/definitions/.html

LuaJIT through 2.1 has an out-of-bounds read in the stack-overflow handler in lj_state.c

References

https://gist.github.com/pwnhacker0x18/423b4292f301ab274b42d5ed6e0b87d8
https://github.com/LuaJIT/LuaJIT/commit/defe61a56751a0db5f00ff3ab7b8f45436ba74c8
https://github.com/LuaJIT/LuaJIT/issues/1152

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.