16 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-27790
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A floating point exception issue was discovered in UPX in PackLinuxElf64::invertptdynamic function of plxelf.cpp file. An attacker with a crafted input file cou...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to the variable bucket pointing to an inaccessible address. The issue is being triggered in the function PackLinuxElf32::invertptdynamic at plxelf.cpp:1688. Remediation Upgrade upx to version 4.2.1 or...
DEBIAN-CVE-2021-43313
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf32::invertptdynamic at plxelf.cpp:1688...
UBUNTU-CVE-2021-43312
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invertptdynamic at plxelf.cpp:5239...
UBUNTU-CVE-2021-43313
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf32::invertptdynamic at plxelf.cpp:1688...
UPX 缓冲区错误漏洞
UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX, which stems from function PackLinuxElf64::invertptdynamic in plxelf.cpp:5239 that causes the "bucket" variable to point to an inaccessible address...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS due to a segmentation fault, via the PackLinuxElf64::invertptdynamic function in the plxelf.cpp file. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its...
CVE-2023-23457
A Segmentation fault was found in UPX in PackLinuxElf64::invertptdynamic in plxelf.cpp. An attacker with a crafted input file allows invalid memory address access that could lead to a denial of service...
DEBIAN-CVE-2023-23457
A Segmentation fault was found in UPX in PackLinuxElf64::invertptdynamic in plxelf.cpp. An attacker with a crafted input file allows invalid memory address access that could lead to a denial of service...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the invertptdynamic function in plxelf.cpp a crafted Mach-O file. Remediation Upgrade upx to version 4.2.1 or higher. References - GitHub Commit - GitHub Commit - GitHub Issue Credit: giantbranch of NSFOCUS...
UBUNTU-CVE-2020-27796
A heap-based buffer over-read was discovered in the invertptdynamic function in plxelf.cpp in UPX 4.0.0 via a crafted Mach-O file...
UPX 缓冲区错误漏洞
UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX version 4.0.0, which stems from a heap-based out-of-bounds read that can be implemented by an attacker via a carefully crafted Mach-O file to the invertptdynamic function of its plxelf.cpp...
DEBIAN-CVE-2020-27790
A floating point exception issue was discovered in UPX in PackLinuxElf64::invertptdynamic function of plxelf.cpp file. An attacker with a crafted input file could trigger this issue that could cause a crash leading to a denial of service. The highest impact is to Availability...
DEBIAN-CVE-2020-27787
A Segmentaation fault was found in UPX in invertptdynamic function in plxelf.cpp. An attacker with a crafted input file allows invalid memory address access that could lead to a denial of service...
UBUNTU-CVE-2020-27790
A floating point exception issue was discovered in UPX in PackLinuxElf64::invertptdynamic function of plxelf.cpp file. An attacker with a crafted input file could trigger this issue that could cause a crash leading to a denial of service. The highest impact is to Availability...
UPX 数字错误漏洞
UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX version 3.96, which stems from a floating-point exception issue found in the PackLinuxElf64::invertptdynamic function of the plxelf.cpp file, which can be triggered by an attacker with a crafte...