VYPR

rpm package

opensuse/sysstat&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/sysstat&distro=openSUSE%20Tumbleweed

Vulnerabilities (7)

  • CVE-2023-33204May 18, 2023
    affected < 12.6.2-2.1fixed 12.6.2-2.1

    sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377.

  • CVE-2022-39377Nov 8, 2022
    affected < 12.6.1-2.1fixed 12.6.1-2.1

    sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocate_structures contains a size_t overflow in sa_common.c. The allocate_structures function insufficiently checks bounds before ar

  • CVE-2019-19725Dec 11, 2019
    affected < 12.4.3-3.2fixed 12.4.3-3.2

    sysstat through 12.2.0 has a double free in check_file_actlst in sa_common.c.

  • CVE-2019-16167Sep 9, 2019
    affected < 12.4.3-3.2fixed 12.4.3-3.2

    sysstat before 12.1.6 has memory corruption due to an Integer Overflow in remap_struct() in sa_common.c.

  • CVE-2018-19517Nov 24, 2018
    affected < 12.4.3-3.2fixed 12.4.3-3.2

    An issue was discovered in sysstat 12.1.1. The remap_struct function in sa_common.c has an out-of-bounds read during a memset call, as demonstrated by sadf.

  • CVE-2018-19416Nov 21, 2018
    affected < 12.4.3-3.2fixed 12.4.3-3.2

    An issue was discovered in sysstat 12.1.1. The remap_struct function in sa_common.c has an out-of-bounds read during a memmove call, as demonstrated by sadf.

  • CVE-2007-3852Aug 14, 2007
    affected < 12.4.3-3.2fixed 12.4.3-3.2

    The init script (sysstat.in) in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely, which allows local users to execute arbitrary code.