Lucene search

GoogleOSV:CVE-2018-11243

HistoryMay 18, 2018 - 5:29 p.m.

CVE-2018-11243

2018-05-1817:29:00

Google

osv.dev

0.017 Low

EPSS

Percentile

87.9%

JSON

PackLinuxElf64::unpack in p_lx_elf.cpp in UPX 3.95 allows remote attackers to cause a denial of service (double free), limit the ability of a malware scanner to operate on the entire original data, or possibly have unspecified other impact via a crafted file.

CPENameOperatorVersion
upxeq3.03
upxeq2.91
upxeq1.91
upxeq2.93
upxeq2.92
upxeq1.90
upxeq1.93
upxeq3.91
upxeq1.94
upxeq3.07

Name	Operator	Version
upx	eq	3.03
upx	eq	2.91
upx	eq	1.91
upx	eq	2.93
upx	eq	2.92
upx	eq	1.90
upx	eq	1.93
upx	eq	3.91
upx	eq	1.94
upx	eq	3.07

Rows per page:

1-10 of 301

References

lists.opensuse.org/opensuse-security-announce/2020-02/msg00001.html

lists.opensuse.org/opensuse-security-announce/2020-02/msg00003.html

lists.opensuse.org/opensuse-security-announce/2020-02/msg00007.html

lists.opensuse.org/opensuse-security-announce/2020-02/msg00008.html

github.com/upx/upx/blob/devel/NEWS

github.com/upx/upx/issues/206

github.com/upx/upx/issues/207

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D7XU42G6MUQQXHWRP7DCF2JSIBOJ5GOO/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EUTVSTXAFTD552NO2K2RIF6MDQEHP3BE/

0.017 Low

EPSS

Percentile

87.9%

JSON

Related for OSV:CVE-2018-11243