Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
almalinuxAlmaLinuxALSA-2023:7010
HistoryNov 14, 2023 - 12:00 a.m.

Moderate: sysstat security and bug fix update

2023-11-1400:00:00
errata.almalinux.org
8
sysstat package
system monitoring
disk activity
network activity
i/o activity
security fix
overflow
bug fix
cve-2023-33204
cvss score
release notes
almalinux
update

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

18.7%

JSON

The sysstat packages provide the sar and iostat commands. These commands enable system monitoring of disk, network, and other I/O activity.

Security Fix(es):

  • sysstat: check_overflow() function can work incorrectly that lead to an overflow (CVE-2023-33204)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

Related

osv 5
veracode 1
redhat 2
fedora 2
oraclelinux 2
openvas 19
wolfi 1
nessus 26
almalinux 1
cgr 1
cbl_mariner 1
redhatcve 1
ubuntucve 2
debiancve 1
cloudfoundry 1
ubuntu 1
prion 1
debian 1
amazon 1
alpinelinux 1
cve 1
mageia 1
cloudlinux 1
photon 3
osv
osv
Moderate: sysstat security and bug fix update
2023-11-07 00:00:00
sysstat - security update
2023-05-27 00:00:00
Moderate: sysstat security and bug fix update
2023-11-14 00:00:00
veracode
veracode
Integer Overflow
2023-10-11 13:51:01
redhat
redhat
(RHSA-2023:7010) Moderate: sysstat security and bug fix update
2023-11-14 08:42:30
(RHSA-2023:6569) Moderate: sysstat security and bug fix update
2023-11-07 06:08:47
fedora
fedora
[SECURITY] Fedora 38 Update: sysstat-12.7.4-1.fc38
2023-07-02 01:06:00
[SECURITY] Fedora 37 Update: sysstat-12.6.2-2.fc37
2023-07-20 05:18:30
oraclelinux
oraclelinux
sysstat security and bug fix update
2023-11-11 00:00:00
sysstat security and bug fix update
2023-11-17 00:00:00
openvas
openvas
Fedora: Security Advisory for sysstat (FEDORA-2023-ac947ec260)
2023-07-03 00:00:00
Fedora: Security Advisory for sysstat (FEDORA-2023-4706cef256)
2023-07-23 00:00:00
Mageia: Security Advisory (MGASA-2023-0203)
2023-06-20 00:00:00
wolfi
wolfi
CVE-2023-33204 vulnerabilities
2024-05-13 09:06:53
nessus
nessus
RHEL 9 : sysstat (RHSA-2023:6569)
2023-11-07 00:00:00
RHEL 8 : sysstat (RHSA-2023:7010)
2023-11-14 00:00:00
EulerOS 2.0 SP11 : sysstat (EulerOS-SA-2023-2671)
2024-01-16 00:00:00
almalinux
almalinux
Moderate: sysstat security and bug fix update
2023-11-07 00:00:00
cgr
cgr
CVE-2023-33204 vulnerabilities
2024-05-13 09:06:52
cbl_mariner
cbl_mariner
CVE-2023-33204 affecting package sysstat for versions less than 12.7.1-2
2023-06-02 21:37:28
redhatcve
redhatcve
CVE-2023-33204
2023-05-18 12:58:00
ubuntucve
ubuntucve
CVE-2023-33204
2023-05-18 00:00:00
CVE-2022-39377
2022-11-08 00:00:00
debiancve
debiancve
CVE-2023-33204
2023-05-18 08:15:08
cloudfoundry
cloudfoundry
USN-6145-1: Sysstat vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
ubuntu
ubuntu
Sysstat vulnerabilities
2023-06-07 00:00:00
prion
prion
Integer overflow
2023-05-18 08:15:00
debian
debian
[SECURITY] [DLA 3434-1] sysstat security update
2023-05-27 11:40:02
amazon
amazon
Important: sysstat
2023-06-05 16:39:00
alpinelinux
alpinelinux
CVE-2023-33204
2023-05-18 08:15:08
cve
cve
CVE-2023-33204
2023-05-18 08:15:08
mageia
mageia
Updated sysstat packages fix security vulnerability
2023-06-19 19:29:01
cloudlinux
cloudlinux
sysstat: Fix of 2 CVEs
2023-05-29 16:18:46
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0408
2023-06-13 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0598
2023-06-16 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0032
2023-06-20 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

18.7%

JSON
Related for ALSA-2023:7010
osv5veracode1redhat2fedora2oraclelinux2openvas19wolfi1nessus26almalinux1cgr1cbl_mariner1redhatcve1ubuntucve2debiancve1cloudfoundry1ubuntu1prion1debian1amazon1alpinelinux1cve1mageia1cloudlinux1photon3