Information on source package upx-ucl

Available versions

ReleaseVersion
jessie3.91-1
stretch3.91-4
buster3.95-1
bullseye3.96-2
bullseye (security)3.96-2+deb11u1
trixie4.2.4-1
sid4.2.4-1

Open issues

BugjessiestretchbusterbullseyetrixiesidDescription
CVE-2023-23456vulnerablevulnerablevulnerable (no DSA)fixedfixedfixedA heap-based buffer overflow issue was discovered in UPX in PackTmt::p ...

Open unimportant issues

BugjessiestretchbusterbullseyetrixiesidDescription
CVE-2024-3209vulnerablevulnerablevulnerablevulnerablefixedfixedA vulnerability was found in UPX up to 4.2.2. It has been rated as cri ...
CVE-2023-23457vulnerablevulnerablevulnerablevulnerablefixedfixedA Segmentation fault was found in UPX in PackLinuxElf64::invert_pt_dyn ...
CVE-2021-46179vulnerablevulnerablevulnerablevulnerablefixedfixedReachable Assertion vulnerability in upx before 4.0.0 allows attackers ...
CVE-2021-43317vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer overflows was discovered in upx, during the generi ...
CVE-2021-43316vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer overflow was discovered in upx, during the generic ...
CVE-2021-43315vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer overflows was discovered in upx, during the generi ...
CVE-2021-43314vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer overflows was discovered in upx, during the generi ...
CVE-2021-43313vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer overflow was discovered in upx, during the variabl ...
CVE-2021-43312vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer overflow was discovered in upx, during the variabl ...
CVE-2021-43311vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer overflow was discovered in upx, during the generic ...
CVE-2021-30501vulnerablevulnerablevulnerablevulnerablefixedfixedAn assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in ...
CVE-2021-30500vulnerablevulnerablevulnerablevulnerablefixedfixedNull pointer dereference was found in upx PackLinuxElf::canUnpack() in ...
CVE-2021-20285vulnerablevulnerablevulnerablevulnerablefixedfixedA flaw was found in upx canPack in p_lx_elf.cpp in UPX 3.96. This flaw ...
CVE-2020-27802vulnerablevulnerablevulnerablevulnerablefixedfixedAn floating point exception was discovered in the elf_lookup function ...
CVE-2020-27801vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer over-read was discovered in the get_le64 function ...
CVE-2020-27800vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer over-read was discovered in the get_le32 function ...
CVE-2020-27799vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer over-read was discovered in the acc_ua_get_be32 fu ...
CVE-2020-27798vulnerablevulnerablevulnerablevulnerablefixedfixedAn invalid memory address reference was discovered in the adjABS funct ...
CVE-2020-27797vulnerablevulnerablevulnerablevulnerablefixedfixedAn invalid memory address reference was discovered in the elf_lookup f ...
CVE-2020-27796vulnerablevulnerablevulnerablevulnerablefixedfixedA heap-based buffer over-read was discovered in the invert_pt_dynamic ...
CVE-2020-27790vulnerablevulnerablevulnerablefixedfixedfixedA floating point exception issue was discovered in UPX in PackLinuxElf ...
CVE-2020-27788vulnerablevulnerablevulnerablefixedfixedfixedAn out-of-bounds read access vulnerability was discovered in UPX in Pa ...
CVE-2020-27787vulnerablevulnerablevulnerablefixedfixedfixedA Segmentaation fault was found in UPX in invert_pt_dynamic() function ...
CVE-2020-24119vulnerablevulnerablevulnerablevulnerablefixedfixedA heap buffer overflow read was discovered in upx 4.0.0, because the c ...
CVE-2019-20805vulnerablevulnerablevulnerablefixedfixedfixedp_lx_elf.cpp in UPX before 3.96 has an integer overflow during unpacki ...
CVE-2019-20053vulnerablevulnerablevulnerablefixedfixedfixedAn invalid memory address dereference was discovered in the canUnpack ...
CVE-2019-20051vulnerablevulnerablevulnerablefixedfixedfixedA floating-point exception was discovered in PackLinuxElf::elf_hash in ...
CVE-2019-20021vulnerablevulnerablevulnerablefixedfixedfixedA heap-based buffer over-read was discovered in canUnpack in p_mach.cp ...
CVE-2019-14296vulnerablevulnerablevulnerablefixedfixedfixedcanUnpack in p_vmlinx.cpp in UPX 3.95 allows remote attackers to cause ...
CVE-2019-14295vulnerablevulnerablevulnerablefixedfixedfixedAn Integer overflow in the getElfSections function in p_vmlinx.cpp in ...
CVE-2017-16869vulnerablevulnerablefixedfixedfixedfixedp_mach.cpp in UPX 3.94 allows remote attackers to cause a denial of se ...
CVE-2017-15056vulnerablevulnerablefixedfixedfixedfixedp_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote a ...

Resolved issues

BugDescription
CVE-2018-11243PackLinuxElf64::unpack in p_lx_elf.cpp in UPX 3.95 allows remote attac ...

Security announcements

DSA / DLADescription
DLA-3991-1upx-ucl - security update

Search for package or bug name: Reporting problems