CVE-2021-43312

Published: Mar 24, 2023

Modified: Feb 25, 2025

PUBLISHED

Description

A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invert_pt_dynamic at p_lx_elf.cpp:5239.

Vendor	Product	Versions
n/a	upx	affected `upx before 4.0.0-git-c6b9e3c62d15`

Weaknesses (CWE)

CWE-119

References

https://github.com/upx/upx/issues/379

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-43312

Description

Affected Products

Weaknesses (CWE)

References