rpm package
opensuse/sysstat&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/sysstat&distro=openSUSE%20Tumbleweed
Vulnerabilities (7)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-33204 | — | < 12.6.2-2.1 | 12.6.2-2.1 | May 18, 2023 | sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377. | ||
| CVE-2022-39377 | — | < 12.6.1-2.1 | 12.6.1-2.1 | Nov 8, 2022 | sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocate_structures contains a size_t overflow in sa_common.c. The allocate_structures function insufficiently checks bounds before ar | ||
| CVE-2019-19725 | — | < 12.4.3-3.2 | 12.4.3-3.2 | Dec 11, 2019 | sysstat through 12.2.0 has a double free in check_file_actlst in sa_common.c. | ||
| CVE-2019-16167 | — | < 12.4.3-3.2 | 12.4.3-3.2 | Sep 9, 2019 | sysstat before 12.1.6 has memory corruption due to an Integer Overflow in remap_struct() in sa_common.c. | ||
| CVE-2018-19517 | — | < 12.4.3-3.2 | 12.4.3-3.2 | Nov 24, 2018 | An issue was discovered in sysstat 12.1.1. The remap_struct function in sa_common.c has an out-of-bounds read during a memset call, as demonstrated by sadf. | ||
| CVE-2018-19416 | — | < 12.4.3-3.2 | 12.4.3-3.2 | Nov 21, 2018 | An issue was discovered in sysstat 12.1.1. The remap_struct function in sa_common.c has an out-of-bounds read during a memmove call, as demonstrated by sadf. | ||
| CVE-2007-3852 | — | < 12.4.3-3.2 | 12.4.3-3.2 | Aug 14, 2007 | The init script (sysstat.in) in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely, which allows local users to execute arbitrary code. |
- CVE-2023-33204May 18, 2023affected < 12.6.2-2.1fixed 12.6.2-2.1
sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377.
- CVE-2022-39377Nov 8, 2022affected < 12.6.1-2.1fixed 12.6.1-2.1
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocate_structures contains a size_t overflow in sa_common.c. The allocate_structures function insufficiently checks bounds before ar
- CVE-2019-19725Dec 11, 2019affected < 12.4.3-3.2fixed 12.4.3-3.2
sysstat through 12.2.0 has a double free in check_file_actlst in sa_common.c.
- CVE-2019-16167Sep 9, 2019affected < 12.4.3-3.2fixed 12.4.3-3.2
sysstat before 12.1.6 has memory corruption due to an Integer Overflow in remap_struct() in sa_common.c.
- CVE-2018-19517Nov 24, 2018affected < 12.4.3-3.2fixed 12.4.3-3.2
An issue was discovered in sysstat 12.1.1. The remap_struct function in sa_common.c has an out-of-bounds read during a memset call, as demonstrated by sadf.
- CVE-2018-19416Nov 21, 2018affected < 12.4.3-3.2fixed 12.4.3-3.2
An issue was discovered in sysstat 12.1.1. The remap_struct function in sa_common.c has an out-of-bounds read during a memmove call, as demonstrated by sadf.
- CVE-2007-3852Aug 14, 2007affected < 12.4.3-3.2fixed 12.4.3-3.2
The init script (sysstat.in) in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely, which allows local users to execute arbitrary code.