upx project upx 3.95 vulnerabilities and exploits

(subscribe to this query)

7.8

CVSSv3

PackLinuxElf64::unpack in p_lx_elf.cpp in UPX 3.95 allows remote malicious users to cause a denial of service (double free), limit the ability of a malware scanner to operate on the entire original data, or possibly have unspecified other impact via a crafted file.

Upx Project Upx 3.95

7.8

CVSSv3

canUnpack in p_vmlinx.cpp in UPX 3.95 allows remote malicious users to cause a denial of service (SEGV or buffer overflow, and application crash) or possibly have unspecified other impact via a crafted UPX packed file.

Upx Project Upx 3.95

5.5

CVSSv3

An Integer overflow in the getElfSections function in p_vmlinx.cpp in UPX 3.95 allows remote malicious users to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an allocation of excessive memor...

Upx Project Upx 3.95

5.5

CVSSv3

A heap-based buffer over-read exists in canUnpack in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.

Upx Project Upx 3.95 Fedoraproject Fedora 30 Fedoraproject Fedora 31

5.5

CVSSv3

A floating-point exception exists in PackLinuxElf::elf_hash in p_lx_elf.cpp in UPX 3.95. The vulnerability causes an application crash, which leads to denial of service.

Upx Project Upx 3.95 Fedoraproject Fedora 30 Fedoraproject Fedora 31

5.5

CVSSv3

An invalid memory address dereference exists in the canUnpack function in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.

Upx Project Upx 3.95 Opensuse Backports Sle-15 Opensuse Leap 15.1

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook