VDB
GCVE-110-MAGEIA-2021-241
GCVE-110-MAGEIA-2021-241
Advisory Published
The updated package fixes security vulnerabilities:
A heap buffer overflow read was discovered in upx 4.0.0, because the
check in p_lx_elf.cpp is not perfect. (CVE-2020-24119)
A flaw was found in upx canPack in p_lx_elf.cpp in UPX 3.96. This flaw
allows attackers to cause a denial of service (SEGV or buffer overflow
and application crash) or possibly have unspecified other impacts via a
crafted ELF. The highest threat from this vulnerability is to system
availability. (CVE-2021-20285)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | upx | 0 (affected), 3.96-2.1.mga8 (unaffected) | — |
| Mageia | upx | 0 (affected), 3.96-1.1.mga7 (unaffected) | — |
Aliases
Browse GCVE Records
72,337 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.