Unrated severityNVD Advisory· Published May 26, 2021· Updated Aug 3, 2024
CVE-2021-30501
CVE-2021-30501
Description
An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- UPX/UPXdescription
- osv-coords2 versionspkg:rpm/opensuse/upx&distro=openSUSE%20Leap%2015.4pkg:rpm/suse/upx&distro=SUSE%20Package%20Hub%2015%20SP4
< 4.0.2-bp154.4.6.1+ 1 more
- (no CPE)range: < 4.0.2-bp154.4.6.1
- (no CPE)range: < 4.0.2-bp154.4.6.1
Patches
Vulnerability mechanics
References
4- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
- github.com/upx/upx/commit/28e761cd42211dfe0124b7a29b2f74730f453e46mitrex_refsource_MISC
- github.com/upx/upx/issues/486mitrex_refsource_MISC
- github.com/upx/upx/pull/487mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.