Описание
A heap-based buffer over-read was discovered in the get_le32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | code not present |
| devel | needs-triage | |
| esm-apps/bionic | not-affected | code not present |
| esm-apps/focal | needed | |
| esm-apps/jammy | needed | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | not-affected | code not present |
| focal | ignored | end of standard support, was needed |
| jammy | needed | |
| kinetic | ignored | end of life, was needs-triage |
Показывать по
10
EPSS
Процентиль: 34%
0.00136
Низкий
7.8 High
CVSS3
Связанные уязвимости
CVSS3: 7.8
nvd
больше 3 лет назад
A heap-based buffer over-read was discovered in the get_le32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file.
CVSS3: 7.8
debian
больше 3 лет назад
A heap-based buffer over-read was discovered in the get_le32 function ...
CVSS3: 7.8
github
больше 3 лет назад
A heap-based buffer over-read was discovered in the get_le32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file.
EPSS
Процентиль: 34%
0.00136
Низкий
7.8 High
CVSS3