A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invert_pt_dynamic at p_lx_elf.cpp:5239.
References
Link | Resource |
---|---|
https://github.com/upx/upx/issues/379 | Exploit Issue Tracking Patch |
https://github.com/upx/upx/issues/379 | Exploit Issue Tracking Patch |
Configurations
History
11 Apr 2025, 12:27
Type | Values Removed | Values Added |
---|---|---|
First Time |
Upx upx
Upx |
|
CPE | cpe:2.3:a:upx:upx:*:*:*:*:*:*:*:* |
21 Nov 2024, 06:29
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/upx/upx/issues/379 - Exploit, Issue Tracking, Patch |
28 Mar 2023, 18:06
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-24 20:15
Updated : 2025-04-11 12:27
NVD link : CVE-2021-43312
Mitre link : CVE-2021-43312
CVE.ORG link : CVE-2021-43312
JSON object : View
Products Affected
upx
- upx