FEDORA-2020-20cf0743f5 — security update for upx

FEDORA-2020-20cf0743f5 created by limb a year ago for Fedora 30

stable

3.96, multiple security fixes.

Patch for CVE-2019-20021

How to install

sudo dnf upgrade --advisory=FEDORA-2020-20cf0743f5

This update has been submitted for testing by limb.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update has obsoleted upx-3.95-5.fc30, and has inherited its bugs and notes.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

This update can be pushed to stable now if the maintainer wishes

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata

Type

security

Severity

low

Karma

Signed

Content Type

RPM

Test Gating

Builds

upx-3.96-1.fc30

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

a year ago

in testing

a year ago

in stable

a year ago

BZ#1581263 CVE-2018-11243 upx: Double-free in PackLinuxElf64::unpack in p_lx_elf.cpp allows denial of service [epel-7]

BZ#1581264 CVE-2018-11243 upx: Double-free in PackLinuxElf64::unpack in p_lx_elf.cpp allows denial of service [fedora-all]

BZ#1792327 CVE-2019-20021 upx: heap-based buffer overflow in canUnpack in p_mach.cpp [fedora-all]

BZ#1792328 CVE-2019-20021 upx: heap-based buffer overflow in canUnpack in p_mach.cpp [epel-7]

BZ#1792329 CVE-2019-20021 upx: heap-based buffer overflow in canUnpack in p_mach.cpp [epel-8]

BZ#1794720 CVE-2019-20051 upx: floating point exception in PackLinuxElf::elf_hash in p_lx_elf.cpp [epel-7]

BZ#1794721 CVE-2019-20051 upx: floating point exception in PackLinuxElf::elf_hash in p_lx_elf.cpp [fedora-all]

BZ#1794722 CVE-2019-20051 upx: floating point exception in PackLinuxElf::elf_hash in p_lx_elf.cpp [epel-8]

upx-3.96-1.fc30

How to install

Automated Test Results