Unrated severityNVD Advisory· Published May 26, 2021· Updated Aug 3, 2024
CVE-2021-30500
CVE-2021-30500
Description
Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- UPX/UPXdescription
- osv-coords2 versionspkg:rpm/opensuse/upx&distro=openSUSE%20Leap%2015.4pkg:rpm/suse/upx&distro=SUSE%20Package%20Hub%2015%20SP4
< 4.0.2-bp154.4.6.1+ 1 more
- (no CPE)range: < 4.0.2-bp154.4.6.1
- (no CPE)range: < 4.0.2-bp154.4.6.1
Patches
Vulnerability mechanics
References
3- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
- github.com/upx/upx/commit/90279abdfcd235172eab99651043051188938dccmitrex_refsource_MISC
- github.com/upx/upx/issues/485mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.