The vulnerability of the get_ne64 function in the bele.h file of the UPX executable file packager allows a attacker to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the getne64 function in the bele.h file of the executable packaging tool by UPX is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of data...

Fedora 40 : upx (2024-df5322cd61)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-df5322cd61 advisory. 4.2.3 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issue but ha...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to the getne64 function of the bele.h file. An attacker can execute arbitrary code or cause a denial of service application crash by submitting specially crafted input to exploit the heap-based buffer...

CVE-2024-3209

A vulnerability was found in UPX up to 4.2.2. It has been rated as critical. This issue affects the function getne64 of the file bele.h. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. The associated identifier of this...

CVE-2024-3209 UPX bele.h get_ne64 heap-based overflow

A vulnerability was found in UPX up to 4.2.2. It has been rated as critical. This issue affects the function getne64 of the file bele.h. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. The associated identifier of this...

DEBIAN-CVE-2020-27801

A heap-based buffer over-read was discovered in the getle64 function in bele.h in UPX 4.0.0 via a crafted Mach-O file...

CVE-2020-27801

A heap-based buffer over-read was discovered in the getle64 function in bele.h in UPX 4.0.0 via a crafted Mach-O file...

UBUNTU-CVE-2020-27800

A heap-based buffer over-read was discovered in the getle32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file...

UBUNTU-CVE-2020-27801

A heap-based buffer over-read was discovered in the getle64 function in bele.h in UPX 4.0.0 via a crafted Mach-O file...

CVE-2020-27801

A heap-based buffer over-read was discovered in the getle64 function in bele.h in UPX 4.0.0 via a crafted Mach-O file...

UPX 缓冲区错误漏洞

UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX version 4.0.0, which stems from a heap-based out-of-bounds read that can be implemented by an attacker via a carefully crafted Mach-O file to the getle64 function of its bele.h component...