Upstream information
Description
Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
SUSE Bugzilla entry: 1184702 [RESOLVED / FIXED]SUSE Security Advisories:
- openSUSE-SU-2023:0088-1, published Tue Apr 11 16:43:52 2023
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Package Hub 15 SP4 |
| Patchnames: openSUSE-2023-88 |
openSUSE Leap 15.4 |
| Patchnames: openSUSE-2023-88 |
SUSE Timeline for this CVE
CVE page created: Tue Apr 13 12:49:35 2021CVE page last modified: Mon Sep 9 13:47:07 2024