Mailing List Archive | ports@openbsd.org

From:: Thomas Frohwein <tfrohwein@fastmail.com>
Subject:: Re: CRITICAL SECURITY UPDATE: games/luanti -> 5.15.2
To:: izzy Meyer <izder456@disroot.org>
Cc:: ports@openbsd.org
Date:: Wed, 15 Apr 2026 13:15:28 -0700

Download raw body.

Thread

2026-04-15 13:39 izzy Meyer:
CRITICAL SECURITY UPDATE: games/luanti -> 5.15.2
- 2026-04-15 20:15 Thomas Frohwein:
  CRITICAL SECURITY UPDATE: games/luanti -> 5.15.2

On Wed, 15 Apr 2026 08:39:35 -0500
izzy Meyer <izder456@disroot.org> wrote:

> Hello ports@
> 
> Yesterday, Luanti upstream released a security release to the 5.15
> branch that fixes a mod sandbox escape and a HTTP API vuln.

Committed, thanks!

> 
> More info here:
> https://forum.luanti.org/viewtopic.php?t=32443
> 
> Changelog:
> https://docs.luanti.org/about/changelog/#5151--5152
> 
> Could this be committed before 7.9 releases? We use LuaJIT so we are
> vulnerable currently. Luckily updating the port was trivial.
> 
> Thanks.
>

2026-04-15 13:39 izzy Meyer:
CRITICAL SECURITY UPDATE: games/luanti -> 5.15.2
- 2026-04-15 20:15 Thomas Frohwein:
  CRITICAL SECURITY UPDATE: games/luanti -> 5.15.2