Heap-Based Buffer Overflow in upx: Inaccessible Address in PackLinuxElf64::invert_pt_dynamic

Heap-Based Buffer Overflow in upx: Inaccessible Address in PackLinuxElf64::invert_pt_dynamic

CVE-2021-43312 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invert_pt_dynamic at p_lx_elf.cpp:5239.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.