ir fstore

About this tag
The tag ir fstore refers to the IR_FSTORE operation within the LuaJIT just-in-time compiler. A vulnerability tracked as CVE-2024-25177 affects LuaJIT through version 2.1 and OpenRusty luajit2 before v2.1-20240314. This flaw can cause a Denial of Service (DoS) when an unsinking of the IR_FSTORE operation occurs upon encountering a NULL metatable. An attacker may exploit this to crash or disrupt processes that embed the affected runtime. The tag covers discussions of this specific vulnerability, its impact on systems using LuaJIT, and related technical analysis.
  1. Understanding CVE-2024-25177: LuaJIT DoS via NULL Metatable Unsinking

    LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 contain a vulnerability (tracked as CVE-2024-25177) that can cause a Denial of Service (DoS) by triggering an unsinking of the IR_FSTORE operation when a NULL metatable is encountered, allowing an attacker to crash or otherwise make...