Описание
A heap-based buffer over-read was discovered in the acc_ua_get_be32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| upx-ucl | fixed | 4.2.2-1 | package |
Примечания
https://github.com/upx/upx/issues/391
https://github.com/upx/upx/commit/4e2fdb464a885c694408552c31739cb04b77bdcf
EPSS
Процентиль: 34%
0.00136
Низкий
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 3 лет назад
A heap-based buffer over-read was discovered in the acc_ua_get_be32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file.
CVSS3: 7.8
nvd
больше 3 лет назад
A heap-based buffer over-read was discovered in the acc_ua_get_be32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file.
CVSS3: 7.8
github
больше 3 лет назад
A heap-based buffer over-read was discovered in the acc_ua_get_be32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file.
EPSS
Процентиль: 34%
0.00136
Низкий