Unrated severityNVD Advisory· Published May 14, 2021· Updated Aug 4, 2024
CVE-2020-24119
CVE-2020-24119
Description
A heap buffer overflow read was discovered in upx 4.0.0, because the check in p_lx_elf.cpp is not perfect.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- upx/upxdescription
- osv-coords5 versionspkg:rpm/opensuse/upx&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/upx&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/upx&distro=openSUSE%20Tumbleweedpkg:rpm/suse/upx&distro=SUSE%20Package%20Hub%2015%20SP2pkg:rpm/suse/upx&distro=SUSE%20Package%20Hub%2015%20SP3
< 3.96-bp153.2.3.1+ 4 more
- (no CPE)range: < 3.96-bp153.2.3.1
- (no CPE)range: < 3.96-bp153.2.3.1
- (no CPE)range: < 3.96-3.2
- (no CPE)range: < 3.96-bp152.2.3.1
- (no CPE)range: < 3.96-bp153.2.3.1
Patches
Vulnerability mechanics
References
4- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JE54WKVU7MATB4WZD3MJFBAHFRJ3NTQX/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSQRO7YC72PSYDQG4PQLQYXZTZE3B4YV/mitrevendor-advisoryx_refsource_FEDORA
- cwe.mitre.org/data/definitions/126.htmlmitrex_refsource_MISC
- github.com/upx/upx/issues/388mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.