4 matches found
UBUNTU-CVE-2024-3209
A vulnerability was found in UPX up to 4.2.2. It has been rated as critical. This issue affects the function getne64 of the file bele.h. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. The associated identifier of this...
PT-2024-4252 · Upx +1 · Upx +1
Name of the Vulnerable Software and Affected Versions: UPX versions up to 4.2.2 Description: A critical issue affects the get ne64 function of the bele.h file, leading to a heap-based buffer overflow. The exploit has been disclosed to the public and may be used. The vendor was contacted early abo...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the getle32 function in bele.h via a crafted Mach-O file. Remediation Upgrade upx to version 4.2.1 or higher. References - GitHub Commit - GitHub Issue Credit: giantbranch of NSFOCUS Security Team...
DEBIAN-CVE-2020-27800
A heap-based buffer over-read was discovered in the getle32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file...