DescriptionAn Integer overflow in the getElfSections function in p_vmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an allocation of excessive memory.
Overall state of this security issue: Does not affect SUSE products
This issue is currently not rated by SUSE as it is not affecting the SUSE Enterprise products.
|National Vulnerability Database|
|National Vulnerability Database||SUSE|
SUSE Timeline for this CVECVE page created: Sun Jul 28 01:15:33 2019
CVE page last modified: Sat Apr 8 16:40:42 2023