CVE-2021-20285 log
| Source |
|
| Severity | Low |
| Remote | No |
| Type | Denial of service |
| Description | A security issue was found in upx canPack in p_lx_elf.cpp in UPX 3.96 that allows attackers to cause a denial of service (SEGV or buffer overflow, and application crash) or possibly have unspecified other impacts via a crafted ELF. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-1676 | upx | 3.96-2 | Medium | Vulnerable |
| References |
|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1937787 https://github.com/upx/upx/issues/421 https://github.com/upx/upx/commit/3781df9da23840e596d5e9e8493f22666802fe6c |