---

CVE-2021-20285 - log back

CVE-2021-20285 edited at 11 Mar 2021 15:00:32
Severity	- Unknown + Low
Remote	- Unknown + Local
Type	- Unknown + Denial of service
Description	+ A security issue was found in upx canPack in p_lx_elf.cpp in UPX 3.96 that allows attackers to cause a denial of service (SEGV or buffer overflow, and application crash) or possibly have unspecified other impacts via a crafted ELF.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=1937787 + https://github.com/upx/upx/issues/421 + https://github.com/upx/upx/commit/3781df9da23840e596d5e9e8493f22666802fe6c
Notes

CVE-2021-20285 created at 11 Mar 2021 14:56:02