Oval Definition:oval:org.opensuse.security:def:201920021
Revision Date:2022-06-30Version:1
Title:CVE-2019-20021
Description:

A heap-based buffer over-read was discovered in canUnpack in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-20021
openSUSE-SU-2020:0163-1
openSUSE-SU-2020:0180-1
Mitre CVE-2019-20021
SUSE CVE-2019-20021
openSUSE-SU-2020:0163-1
openSUSE-SU-2020:0180-1
Platform(s):openSUSE Leap 15.1
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • upx-3.96-lp151.3.3 is installed
  • AND upx is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND upx-3.96-3.2 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND upx-3.96-bp151.4.3.1 is installed
    • BACK