SUSE CVE-2019-14296

canUnpack in pvmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service SEGV or buffer overflow, and application crash or possibly have unspecified other impact via a crafted UPX packed file...

SUSE CVE-2019-20021

A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

SUSE CVE-2019-20053

An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

The vulnerability of the `PackLinuxElf::canUnpack()` function in the `p_lx_elf.cpp` component of the UPX executable file unpacker, related to pointer swapping errors, allows a hacker to gain access to confidential data, compromise its integrity, and cause service failure.

The vulnerability of the PackLinuxElf::canUnpack function in the plxelf.cpp component of the UPX executable file unpacker is related to pointer swapping errors. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service...

Null pointer dereference

Null pointer dereference was found in upx PackLinuxElf::canUnpack in plxelf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file...

UPX 代码问题漏洞

UPX is an open source executable file packaging program that supports a variety of file formats from different operating systems. A null pointer dereference vulnerability exists in PackLinuxElf::canUnpack in plxelf.cpp in UPX version 4.0.0. The vulnerability can be exploited to execute arbitrary...

Updated upx packages fix security vulnerability

The updated package fixes security vulnerabilities: An Integer overflow in the getElfSections function in pvmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an...

DEBIAN-CVE-2019-20053

An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

UBUNTU-CVE-2019-20053

An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

CVE-2019-20053

An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

CVE-2019-20053

An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

CVE-2019-20021

A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

DEBIAN-CVE-2019-20021

A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

UBUNTU-CVE-2019-20021

A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

Heap overflow

A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

CVE-2019-20021

CVE-2019-20021 affects UPX, where UPX 3.95 contains a heap-based buffer over-read in canUnpack() within p_mach.cpp when processing crafted Mach-O files. OpenSUSE/Fedora advisories indicate the fix is in UPX 3.96, which patches this vulnerability (and related CVEs) by updating to 3.96. Practical i...

CVE-2019-20021

A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...

PT-2019-16068 · Upx Team +3 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX version 3.95 ALT Linux affected versions not specified Description: An issue was found in the canUnpack function in p mach.cpp, which can be triggered by a crafted Mach-O file, leading to an invalid memory address dereference...

PT-2019-16056 · Upx +2 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX version 3.95 Description: A heap-based buffer over-read issue was found in the canUnpack function in p mach.cpp via a crafted Mach-O file. Recommendations: For UPX version 3.95, consider updating to a newer version that contains a fix for...

UPX Buffer Overflow Vulnerability

UPX is a portable and extensible executable compression program. A buffer overflow vulnerability exists in the 'canUnpack' function of the pvmlinx.cpp file in UPX version 3.95. The vulnerability stems from a networked system or product performing operations in memory without properly validating...