upx is vulnerable to heap-based buffer overflow. The vulnerability exists in p_lx_elf.cpp
which allows an attacker to cause an application crash.
cwe.mitre.org/data/definitions/126.html
github.com/upx/upx/issues/388
lists.fedoraproject.org/archives/list/[email protected]/message/JE54WKVU7MATB4WZD3MJFBAHFRJ3NTQX/
lists.fedoraproject.org/archives/list/[email protected]/message/VSQRO7YC72PSYDQG4PQLQYXZTZE3B4YV/
secdb.alpinelinux.org/edge/community.yaml