UBUNTU-CVE-2023-23456

A heap-based buffer overflow issue was discovered in UPX in PackTmt::pack in ptmt.cpp file. The flow allows an attacker to cause a denial of service abort via a crafted file...

UPX 缓冲区错误漏洞

UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX that stems from the presence of a segmentation error. An attacker could exploit the vulnerability to cause a denial of service by accessing a memory address using a specially crafted input file...

PT-2022-8865 · Upx +1 · Upx +1

Name of the Vulnerable Software and Affected Versions: UPX affected versions not specified Description: A floating point exception issue was discovered in the PackLinuxElf64::invert pt dynamic function of the p lx elf.cpp file. An attacker with a crafted input file could trigger this issue, causi...

DEBIAN-CVE-2019-20805

plxelf.cpp in UPX before 3.96 has an integer overflow during unpacking via crafted values in a PTDYNAMIC segment...

PT-2019-16066 · Upx Team +1 · Upx +1

Name of the Vulnerable Software and Affected Versions: UPX version 3.95 Description: A floating-point exception was discovered in PackLinuxElf::elf hash in p lx elf.cpp, causing an application crash that leads to denial of service. Recommendations: For UPX version 3.95, consider updating to a new...

PT-2019-13593 · Upx Team +2 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX version 3.95 Description: The issue allows remote attackers to cause a denial of service, which may result in a SEGV or buffer overflow, and application crash, via a crafted UPX packed file. The canUnpack function in p vmlinx.cpp is...

UPX denial of service vulnerability

UPX is an executable file compressor. A security vulnerability exists in the 'PackLinuxElf64::unpack' function of the plxelf.cpp file in UPX version 3.95. A remote attacker can exploit this vulnerability to cause a denial of service double release with the help of specially crafted files...