CVE-2021-30501

Опубликовано: 27 мая 2021

Источник: debian

EPSS Низкий

Описание

An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
upx-ucl	fixed	4.2.2-1		package

Примечания

https://github.com/upx/upx/issues/486
https://github.com/upx/upx/pull/487
https://github.com/upx/upx/commit/bf957f435ee59e3c0d7cc2c4fb27907d2e7829ed (v3.99)

EPSS

Процентиль: 32%

0.00125

Низкий

Связанные уязвимости

CVE-2021-30501

CVSS3: 5.5

ubuntu

больше 4 лет назад

An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.

CVE-2021-30501

CVSS3: 5.5

nvd

больше 4 лет назад

An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.

GHSA-88gh-wqj4-3fxr

CVSS3: 5.5

github

больше 3 лет назад

An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.

openSUSE-SU-2023:0088-1

suse-cvrf

почти 3 года назад

Security update for upx

EPSS

Процентиль: 32%

0.00125

Низкий