A vulnerability was found in p_lx_elf.cpp in UPX before 3.96 has an integer overflow during unpacking via crafted values in a PT_DYNAMIC segment. References: https://github.com/upx/upx/commit/8be9da8280dfa69d5df4417d4d81bda1cab78010 https://github.com/upx/upx/issues/317