Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-27787HistoryAug 18, 2022 - 7:15 p.m.
CVE-2020-27787
2022-08-1819:15:14
Debian Security Bug Tracker
security-tracker.debian.org
12
cve-2020-27787
upx
segmentation fault
denial of service
unix
p_lx_elf.cpp
memory address access
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
20.0%
A Segmentaation fault was found in UPX in invert_pt_dynamic() function in p_lx_elf.cpp. An attacker with a crafted input file allows invalid memory address access that could lead to a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | upx-ucl | < 3.96-1 | upx-ucl_3.96-1_all.deb |
| Debian | 999 | all | upx-ucl | < 3.96-1 | upx-ucl_3.96-1_all.deb |
| Debian | 13 | all | upx-ucl | < 3.96-1 | upx-ucl_3.96-1_all.deb |
Related
cve
cve
CVE-2020-27787
2022-08-18 19:15:14
cvelist
cvelist
CVE-2020-27787
2022-08-18 18:34:49
ubuntucve
ubuntucve
CVE-2020-27787
2022-08-18 00:00:00
prion
prion
Design/Logic Flaw
2022-08-18 19:15:00
osv
osv
CVE-2020-27787
2022-08-18 19:15:14
nvd
nvd
CVE-2020-27787
2022-08-18 19:15:14
rosalinux
rosalinux
Advisory ROSA-SA-2023-2260
2023-10-22 05:19:12
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
20.0%
Related for DEBIANCVE:CVE-2020-27787