EUVD-2020-20302

Malware in sbrugna...

EUVD-2021-30250

Malicious code in bioql PyPI...

DEBIAN-CVE-2021-43317

A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404...

CVE-2021-43315

A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf32::elflookup at plxelf.cpp:5349...

CVE-2021-43311

A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func getle32. The problem is essentially caused in PackLinuxElf32::elflookup at plxelf.cpp:5382...

Denial Of Service (DoS)

upx is vulnerable to denial of service. The vulnerability exists due to the heap-based buffer over-read in the getle32 function of bele.h, allowing an attacker to crash the application through the maliciously crafted Mach-O file...

UPX 缓冲区错误漏洞

UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX version 4.0.0, which originates from a heap-based out-of-bounds read that can be implemented by an attacker via a carefully crafted Mach-O file to the getle32 function of its bele.h component...