A heap-based buffer over-read was discovered in canUnpack in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.
References
Configurations
History
07 Nov 2023, 03:08
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
20 Jan 2023, 15:47
Type | Values Removed | Values Added |
---|---|---|
First Time |
Fedoraproject
Fedoraproject fedora |
|
CPE | cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D7XU42G6MUQQXHWRP7DCF2JSIBOJ5GOO/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EUTVSTXAFTD552NO2K2RIF6MDQEHP3BE/ - Mailing List, Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00007.html - Broken Link | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00003.html - Broken Link |
Information
Published : 2019-12-27 02:15
Updated : 2023-12-10 13:13
NVD link : CVE-2019-20021
Mitre link : CVE-2019-20021
CVE.ORG link : CVE-2019-20021
JSON object : View
Products Affected
fedoraproject
- fedora
upx_project
- upx
CWE
CWE-125
Out-of-bounds Read