8 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-20053
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file. CVE-2019-20053 Note that Ness...
CVE-2019-20053
creationtimestamp| type| source ---|---|--- 2024-03-18 09:41:32+00:00| seen| https://t.me/ctinow/210305...
SUSE CVE-2019-20053
An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...
Updated upx packages fix security vulnerabilities
The updated packages fix security vulnerabilities: PackLinuxElf64::unpack in plxelf.cpp in UPX 3.95 allows remote attackers to cause a denial of service double free, limit the ability of a malware scanner to operate on the entire original data, or possibly have unspecified other impact via a...
openSUSE Security Update : upx (openSUSE-2020-163)
This update for upx to version 3.96 fixes the following issues : - CVE-2019-1010048: Fixed a denial of service in PackLinuxElf32::PackLinuxElf32help1 boo1141777. - CVE-2019-14296: Fixed a denial of service in canUnpack boo1143839. - CVE-2019-20021: Fixed a heap-based buffer over-read in canUnpack...
OPENSUSE-SU-2020:0163-1 Security update for upx
This update for upx to version 3.96 fixes the following issues: - CVE-2019-1010048: Fixed a denial of service in PackLinuxElf32::PackLinuxElf32help1 boo1141777. - CVE-2019-14296: Fixed a denial of service in canUnpack boo1143839. - CVE-2019-20021: Fixed a heap-based buffer over-read in canUnpack...
CVE-2019-20053
UPX 3.95 contains an invalid memory address dereference in canUnpack (p_mach.cpp) when processing crafted Mach-O files, leading to a crash/denial of service. Multiple advisories note this CVE-2019-20053 and show that fixes were released in UPX 3.96 (and backported updates in related advisories). ...
CVE-2019-20053
An invalid memory address dereference was discovered in the canUnpack function in pmach.cpp in UPX 3.95 via a crafted Mach-O file...