upx

Top products

The 15 most recently published vulnerabilities affecting upx.

• CVE-2025-2849UPX p_lx_elf.cpp un_DT_INIT heap-based overflow3.3Mar 27, 2025
• CVE-2024-3209UPX bele.h get_ne64 heap-based overflow5.5Apr 2, 2024
• CVE-2021-46179Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function.6.5Aug 22, 2023
• CVE-2021-43317A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32(). The problem is essentially caused in PackLinuxElf64::elf_lo...7.5Mar 24, 2023
• CVE-2021-43316A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le64().7.5Mar 24, 2023
• CVE-2021-43315A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32(). The problem is essentially caused in PackLinuxElf32::elf_lo...7.5Mar 24, 2023
• CVE-2021-43314A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32(). The problem is essentially caused in PackLinuxElf32::elf_lo...7.5Mar 24, 2023
• CVE-2021-43313A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf32::invert_pt_dynamic at...7.5Mar 24, 2023
• CVE-2021-43312A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invert_pt_dynamic at...7.5Mar 24, 2023
• CVE-2021-43311A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32(). The problem is essentially caused in PackLinuxElf32::elf_loo...7.5Mar 24, 2023
• CVE-2023-23457Upx: segv on packlinuxelf64::invert_pt_dynamic() in p_lx_elf.cpp5.3Jan 12, 2023
• CVE-2023-23456Upx: heap-buffer-overflow in packtmt::pack()5.3Jan 12, 2023
• CVE-2020-27802An floating point exception was discovered in the elf_lookup function in p_lx_elf.cpp in UPX 4.0.0 via a crafted Mach-O file.5.5Aug 25, 2022
• CVE-2020-27801A heap-based buffer over-read was discovered in the get_le64 function in bele.h in UPX 4.0.0 via a crafted Mach-O file.7.8Aug 25, 2022
• CVE-2020-27800A heap-based buffer over-read was discovered in the get_le32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file.7.8Aug 25, 2022