A heap-based buffer overflow issue was discovered in UPX in PackTmt::pack() in p_tmt.cpp file. The flow allows an attacker to cause a denial of service (abort) via a crafted file.
History

Thu, 12 Dec 2024 01:45:00 +0000

Type Values Removed Values Added
References

Wed, 18 Sep 2024 08:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: fedora

Published: 2023-01-12T00:00:00

Updated: 2024-12-11T19:02:29.592Z

Reserved: 2023-01-12T00:00:00

Link: CVE-2023-23456

cve-icon Vulnrichment

Updated: 2024-12-11T19:02:29.592Z

cve-icon NVD

Status : Modified

Published: 2023-01-12T19:15:24.693

Modified: 2024-12-12T01:15:48.337

Link: CVE-2023-23456

cve-icon Redhat

No data.