22 matches found
SUSE CVE-2019-14296
canUnpack in pvmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service SEGV or buffer overflow, and application crash or possibly have unspecified other impact via a crafted UPX packed file...
SUSE CVE-2019-20021
A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
SUSE CVE-2019-20053
An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
Null pointer dereference
Null pointer dereference was found in upx PackLinuxElf::canUnpack in plxelf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file...
UPX 代码问题漏洞
UPX is an open source executable file packaging program that supports a variety of file formats from different operating systems. A null pointer dereference vulnerability exists in PackLinuxElf::canUnpack in plxelf.cpp in UPX version 4.0.0. The vulnerability can be exploited to execute arbitrary...
Updated upx packages fix security vulnerability
The updated package fixes security vulnerabilities: An Integer overflow in the getElfSections function in pvmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an...
DEBIAN-CVE-2019-20053
An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
UBUNTU-CVE-2019-20053
An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
CVE-2019-20053
An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
CVE-2019-20053
An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
CVE-2019-20021
A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
DEBIAN-CVE-2019-20021
A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
UBUNTU-CVE-2019-20021
A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
Heap overflow
A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
CVE-2019-20021
CVE-2019-20021 affects UPX, where UPX 3.95 contains a heap-based buffer over-read in canUnpack() within p_mach.cpp when processing crafted Mach-O files. OpenSUSE/Fedora advisories indicate the fix is in UPX 3.96, which patches this vulnerability (and related CVEs) by updating to 3.96. Practical i...
CVE-2019-20021
A heap-based buffer over-read was discovered in canUnpack in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
PT-2019-16056 · Upx +2 · Upx +2
Name of the Vulnerable Software and Affected Versions: UPX version 3.95 Description: A heap-based buffer over-read issue was found in the canUnpack function in p mach.cpp via a crafted Mach-O file. Recommendations: For UPX version 3.95, consider updating to a newer version that contains a fix for...
PT-2019-16068 · Upx Team +3 · Upx +2
Name of the Vulnerable Software and Affected Versions: UPX version 3.95 ALT Linux affected versions not specified Description: An issue was found in the canUnpack function in p mach.cpp, which can be triggered by a crafted Mach-O file, leading to an invalid memory address dereference...
UPX Buffer Overflow Vulnerability
UPX is a portable and extensible executable compression program. A buffer overflow vulnerability exists in the 'canUnpack' function of the pvmlinx.cpp file in UPX version 3.95. The vulnerability stems from a networked system or product performing operations in memory without properly validating...
CVE-2019-14296
canUnpack in pvmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service SEGV or buffer overflow, and application crash or possibly have unspecified other impact via a crafted UPX packed file...