CVE-2021-20285 log

Source
Severity Low
Remote No
Type Denial of service
Description
A security issue was found in upx canPack in p_lx_elf.cpp in UPX 3.96 that allows attackers to cause a denial of service (SEGV or buffer overflow, and application crash) or possibly have unspecified other impacts via a crafted ELF.
Group Package Affected Fixed Severity Status Ticket
AVG-1676 upx 3.96-2 Low Vulnerable
References
https://bugzilla.redhat.com/show_bug.cgi?id=1937787
https://github.com/upx/upx/issues/421
https://github.com/upx/upx/commit/3781df9da23840e596d5e9e8493f22666802fe6c