CRITICAL9.8CVE-2024-3209A vulnerability was found in UPX up to 4.2.2. from 0
HIGH7.8CVE-2020-27801A heap-based buffer over-read was discovered in the get_le64 function in bele.h in UPX 4.0.0 via a crafted Mach-O file. from 0
HIGH7.8CVE-2020-27800A heap-based buffer over-read was discovered in the get_le32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file. from 0
HIGH7.8A heap-based buffer over-read was discovered in the acc_ua_get_be32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file.
from 0
HIGH7.8A heap-based buffer over-read was discovered in the invert_pt_dynamic function in p_lx_elf.cpp in UPX 4.0.0 via a crafted Mach-O file.
from 0
HIGH7.8Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0.
from 0
HIGH7.8canUnpack in p_vmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service (SEGV or buffer overflow, and application crash)…
from 0, < 3.95-2
HIGH7.8PackLinuxElf64::unpack in p_lx_elf.cpp in UPX 3.95 allows remote attackers to cause a denial of service (double free), limit the ability of…
from 0, < 1.03+repack-5
HIGH7.8p_mach.cpp in UPX 3.94 allows remote attackers to cause a denial of service (invalid memory access and application crash) or possibly have…
from 0, < 3.94-4
HIGH7.8p_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote attackers to cause a denial of service (application crash) or possibly…
from 0, < 3.94-4
HIGH7.5A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32().
from 0
HIGH7.5A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le64().
from 0
HIGH7.5A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32().
from 0
HIGH7.5A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32().
from 0
HIGH7.5A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address.
from 0
HIGH7.5A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address.
from 0
HIGH7.5A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32().
from 0
HIGH7.1A heap buffer overflow read was discovered in upx 4.0.0, because the check in p_lx_elf.cpp is not perfect.
from 0
MEDIUM6.6A flaw was found in upx canPack in p_lx_elf.cpp in UPX 3.96.
from 0
MEDIUM6.5Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the read…
from 0
MEDIUM5.5A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0.
from 0
MEDIUM5.5A Segmentation fault was found in UPX in PackLinuxElf64::invert_pt_dynamic() in p_lx_elf.cpp.
from 0
MEDIUM5.5upx-ucl - security update
from 0, < 3.96-2+deb11u1
MEDIUM5.5upx-ucl - security update
from 0, < 3.96-2+deb11u1
MEDIUM5.5An floating point exception was discovered in the elf_lookup function in p_lx_elf.cpp in UPX 4.0.0 via a crafted Mach-O file.
from 0
MEDIUM5.5An invalid memory address reference was discovered in the adjABS function in p_lx_elf.cpp in UPX 4.0.0 via a crafted Mach-O file.
from 0
MEDIUM5.5An invalid memory address reference was discovered in the elf_lookup function in p_lx_elf.cpp in UPX 4.0.0 via a crafted Mach-O file.
from 0
MEDIUM5.5An out-of-bounds read access vulnerability was discovered in UPX in PackLinuxElf64::canPack() function of p_lx_elf.cpp file.
from 0, < 3.96-1
MEDIUM5.5A floating point exception issue was discovered in UPX in PackLinuxElf64::invert_pt_dynamic() function of p_lx_elf.cpp file.
from 0, < 3.96-1
MEDIUM5.5A Segmentaation fault was found in UPX in invert_pt_dynamic() function in p_lx_elf.cpp.
from 0, < 3.96-1
MEDIUM5.5An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0.
from 0
MEDIUM5.5p_lx_elf.cpp in UPX before 3.96 has an integer overflow during unpacking via crafted values in a PT_DYNAMIC segment.
from 0, < 3.96-1
MEDIUM5.5An invalid memory address dereference was discovered in the canUnpack function in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.
from 0, < 3.96-1
MEDIUM5.5A floating-point exception was discovered in PackLinuxElf::elf_hash in p_lx_elf.cpp in UPX 3.95.
from 0, < 3.96-1
MEDIUM5.5A heap-based buffer over-read was discovered in canUnpack in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.
from 0, < 3.96-1
MEDIUM5.5An Integer overflow in the getElfSections function in p_vmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service (crash)…
from 0, < 3.95-2