16 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-2849
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp...
Advisory ROSA-SA-2025-2935
software: upx 5.0.0 WASP: ROSA-CHROME unaffected versions = upx-5.0.0.0-1 affected versions upx-5.0.0-1 CVE-ID: CVE-2025-2849 BDU-ID: 2025-06969 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the PackLinuxElf64::unDTINIT function of the src/plxelf.cpp file of the UPX executable file packer is...
CVE-2025-2849 vulnerabilities
Vulnerabilities for packages: upx...
CVE-2025-2849 vulnerabilities
Vulnerabilities for packages: upx...
Fedora: Security Advisory (FEDORA-2025-3f77ed652b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 40 : upx (2025-3f77ed652b)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-3f77ed652b advisory. 5.0.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for these...
Fedora 41 : upx (2025-c91006eca6)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-c91006eca6 advisory. 5.0.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for these...
Mageia: Security Advisory (MGASA-2025-0122)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2025-0122 Updated upx packages fix security vulnerability
UPX plxelf.cpp unDTINIT heap-based overflow. CVE-2025-2849...
Updated upx packages fix security vulnerability
UPX plxelf.cpp unDTINIT heap-based overflow. CVE-2025-2849...
upx-5.0.0-2.1 on GA media (moderate)
upx-5.0.0-2.1 on GA media Announcement ID: openSUSE-SU-2025:14947-1 Rating: moderate Cross-References: CVE-2025-2849 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the upx-5.0.0-2.1 package o...
CVE-2025-2849
A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...
CVE-2025-2849 UPX p_lx_elf.cpp un_DT_INIT heap-based overflow
A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...
CVE-2025-2849 UPX p_lx_elf.cpp un_DT_INIT heap-based overflow
A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...
CVE-2025-2849
CVE-2025-2849 affects UPX up to 5.0.0. The vulnerability is in PackLinuxElf64::un_DT_INIT (src/p_lx_elf.cpp) and enables a heap-based buffer overflow, exploitable on the local host. Public exploit information exists. A patch is identified as e0b6ff192412f5bb5364c1948f4f6b27a0cd5ea2; applying the ...
CVE-2025-2849 UPX p_lx_elf.cpp un_DT_INIT heap-based overflow
A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...