UPX 安全漏洞

UPX is a free, secure, portable, scalable, high-performance executable shelling program for a wide range of executable formats. A security vulnerability exists in UPX 5.0.0 and earlier versions, which stems from an incorrect operation of the PackLinuxElf64::unDTINIT function that can cause a heap...

UPX 安全漏洞

UPX is a free, secure, portable, scalable, high-performance executable shelling program for multiple executable formats. A security vulnerability exists in UPX version 4.2.2 and prior versions that stems from the presence of a heap-based buffer overflow issue...

UPX 安全漏洞

UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX, which stems from function PackLinuxElf32::invertptdynamic in plxelf.cpp:1688 that causes the "bucket" variable to point to an inaccessible address...

UPX 缓冲区错误漏洞

UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX, which stems from an issue in function PackLinuxElf32::elflookup in plxelf.cpp:5349 that causes the generic pointer p to point to an inaccessible address in func getle32...

UPX 缓冲区错误漏洞

UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX, which stems from an issue in function PackLinuxElf32::elflookup in plxelf.cpp:5404 that causes the generic pointer p to point to an inaccessible address in func getle32...

UBUNTU-CVE-2020-27802

An floating point exception was discovered in the elflookup function in plxelf.cpp in UPX 4.0.0 via a crafted Mach-O file...

PT-2022-8875 · Upx +2 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX version 4.0.0 Description: A heap-based buffer over-read was discovered in the get le64 function in bele.h via a crafted Mach-O file. Recommendations: For UPX version 4.0.0, at the moment, there is no information about a newer version tha...

PT-2022-8865 · Upx +1 · Upx +1

Name of the Vulnerable Software and Affected Versions: UPX affected versions not specified Description: A floating point exception issue was discovered in the PackLinuxElf64::invert pt dynamic function of the p lx elf.cpp file. An attacker with a crafted input file could trigger this issue, causi...

DEBIAN-CVE-2019-20805

plxelf.cpp in UPX before 3.96 has an integer overflow during unpacking via crafted values in a PTDYNAMIC segment...

PT-2019-16066 · Upx Team +1 · Upx +1

Name of the Vulnerable Software and Affected Versions: UPX version 3.95 Description: A floating-point exception was discovered in PackLinuxElf::elf hash in p lx elf.cpp, causing an application crash that leads to denial of service. Recommendations: For UPX version 3.95, consider updating to a new...

UPX denial of service vulnerability

UPX is an executable file compressor. A security vulnerability exists in the 'PackLinuxElf64::unpack' function of the plxelf.cpp file in UPX version 3.95. A remote attacker can exploit this vulnerability to cause a denial of service double release with the help of specially crafted files...

PT-2017-14606 · Upx +1 · Upx +1

Name of the Vulnerable Software and Affected Versions: UPX version 3.94 Description: The issue allows remote attackers to cause a denial of service, resulting in invalid memory access and application crash, or possibly have other unspecified impacts via a crafted Mach-O file. This is related to t...