55 matches found
EUVD-2021-30256
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2020-27790
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A floating point exception issue was discovered in UPX in PackLinuxElf64::invertptdynamic function of plxelf.cpp file. An attacker with a crafted input file cou...
SUSE CVE-2025-2849
A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...
Heap Buffer Overflow
UPX is vulnerable to a heap-based buffer overflow. The vulnerability is due to the variable 'bucket' pointing to an inaccessible address in the function PackLinuxElf64::invertptdynamic at plxelf.cpp, allowing attackers to potentially execute arbitrary code or cause a denial of service by exploiti...
CVE-2021-43312
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invertptdynamic at plxelf.cpp:5239...
CVE-2021-43312
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invertptdynamic at plxelf.cpp:5239...
CVE-2021-43317
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404...
CVE-2021-43317
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404...
UBUNTU-CVE-2021-43317
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404...
CVE-2021-43317
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404...
Heap overflow
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invertptdynamic at plxelf.cpp:5239...
Heap overflow
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404...
CVE-2021-43312
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invertptdynamic at plxelf.cpp:5239...
CVE-2021-43317
CVE-2021-43317 is a heap-based buffer overflow in UPX, triggered in PackLinuxElf64::elf_lookup() when the generic pointer p points to an inaccessible address in get_le32 (p_lx_elf.cpp:5404). The vulnerability affects UPX and is documented across multiple sources (NVD description, OSV entries). Im...
CVE-2021-43312
CVE-2021-43312 is a heap-based buffer overflow in UPX affecting the Linux ELF packing path, specifically PackLinuxElf64::invert_pt_dynamic at p_lx_elf.cpp:5239. Multiple connected sources (including OSV entries and openSUSE/SUSE advisories) confirm the vulnerability and the affected component, wi...
CVE-2021-43317
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404...
CVE-2021-43312
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invertptdynamic at plxelf.cpp:5239...
PT-2023-12429 · Upx +1 · Upx +1
Name of the Vulnerable Software and Affected Versions: upx affected versions not specified Description: A heap-based buffer overflow issue was discovered, triggered when the variable bucket points to an inaccessible address. This issue occurs in the function PackLinuxElf64::invert pt dynamic at p...
CVE-2021-43312
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invertptdynamic at plxelf.cpp:5239...
CVE-2021-43317
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404...