CVE-2021-43313 Information

Description

A heap-based buffer overflow was discovered in upx during the variable ‘bucket’ points to an inaccessible address. The issue is being triggered in the function PackLinuxElf32::invert_pt_dynamic at p_lx_elf.cpp:1688.

Reference

https://github.com/upx/upx/issues/378