| Bug | bullseye | trixie | sid | Description |
|---|
| CVE-2024-3209 | vulnerable | fixed | fixed | A vulnerability was found in UPX up to 4.2.2. It has been rated as cri ... |
| CVE-2023-23457 | vulnerable | fixed | fixed | A Segmentation fault was found in UPX in PackLinuxElf64::invert_pt_dyn ... |
| CVE-2021-46179 | vulnerable | fixed | fixed | Reachable Assertion vulnerability in upx before 4.0.0 allows attackers ... |
| CVE-2021-43317 | vulnerable | fixed | fixed | A heap-based buffer overflows was discovered in upx, during the generi ... |
| CVE-2021-43316 | vulnerable | fixed | fixed | A heap-based buffer overflow was discovered in upx, during the generic ... |
| CVE-2021-43315 | vulnerable | fixed | fixed | A heap-based buffer overflows was discovered in upx, during the generi ... |
| CVE-2021-43314 | vulnerable | fixed | fixed | A heap-based buffer overflows was discovered in upx, during the generi ... |
| CVE-2021-43313 | vulnerable | fixed | fixed | A heap-based buffer overflow was discovered in upx, during the variabl ... |
| CVE-2021-43312 | vulnerable | fixed | fixed | A heap-based buffer overflow was discovered in upx, during the variabl ... |
| CVE-2021-43311 | vulnerable | fixed | fixed | A heap-based buffer overflow was discovered in upx, during the generic ... |
| CVE-2021-30501 | vulnerable | fixed | fixed | An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in ... |
| CVE-2021-30500 | vulnerable | fixed | fixed | Null pointer dereference was found in upx PackLinuxElf::canUnpack() in ... |
| CVE-2021-20285 | vulnerable | fixed | fixed | A flaw was found in upx canPack in p_lx_elf.cpp in UPX 3.96. This flaw ... |
| CVE-2020-27802 | vulnerable | fixed | fixed | An floating point exception was discovered in the elf_lookup function ... |
| CVE-2020-27801 | vulnerable | fixed | fixed | A heap-based buffer over-read was discovered in the get_le64 function ... |
| CVE-2020-27800 | vulnerable | fixed | fixed | A heap-based buffer over-read was discovered in the get_le32 function ... |
| CVE-2020-27799 | vulnerable | fixed | fixed | A heap-based buffer over-read was discovered in the acc_ua_get_be32 fu ... |
| CVE-2020-27798 | vulnerable | fixed | fixed | An invalid memory address reference was discovered in the adjABS funct ... |
| CVE-2020-27797 | vulnerable | fixed | fixed | An invalid memory address reference was discovered in the elf_lookup f ... |
| CVE-2020-27796 | vulnerable | fixed | fixed | A heap-based buffer over-read was discovered in the invert_pt_dynamic ... |
| CVE-2020-24119 | vulnerable | fixed | fixed | A heap buffer overflow read was discovered in upx 4.0.0, because the c ... |
| Bug | Description |
|---|
| CVE-2023-23456 | A heap-based buffer overflow issue was discovered in UPX in PackTmt::p ... |
| CVE-2020-27790 | A floating point exception issue was discovered in UPX in PackLinuxElf ... |
| CVE-2020-27788 | An out-of-bounds read access vulnerability was discovered in UPX in Pa ... |
| CVE-2020-27787 | A Segmentaation fault was found in UPX in invert_pt_dynamic() function ... |
| CVE-2019-20805 | p_lx_elf.cpp in UPX before 3.96 has an integer overflow during unpacki ... |
| CVE-2019-20053 | An invalid memory address dereference was discovered in the canUnpack ... |
| CVE-2019-20051 | A floating-point exception was discovered in PackLinuxElf::elf_hash in ... |
| CVE-2019-20021 | A heap-based buffer over-read was discovered in canUnpack in p_mach.cp ... |
| CVE-2019-14296 | canUnpack in p_vmlinx.cpp in UPX 3.95 allows remote attackers to cause ... |
| CVE-2019-14295 | An Integer overflow in the getElfSections function in p_vmlinx.cpp in ... |
| CVE-2018-11243 | PackLinuxElf64::unpack in p_lx_elf.cpp in UPX 3.95 allows remote attac ... |
| CVE-2017-16869 | p_mach.cpp in UPX 3.94 allows remote attackers to cause a denial of se ... |
| CVE-2017-15056 | p_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote a ... |