Debian 10 sysstat LTS security update with multiple vulnerabilitie
Reporter | Title | Published | Views | Family All 189 |
---|---|---|---|---|
OpenVAS | Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2671) | 5 Sep 202300:00 | – | openvas |
OpenVAS | Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2629) | 8 Aug 202300:00 | – | openvas |
OpenVAS | Mageia: Security Advisory (MGASA-2023-0203) | 20 Jun 202300:00 | – | openvas |
OpenVAS | Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2551) | 3 Aug 202300:00 | – | openvas |
OpenVAS | Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2776) | 11 Sep 202300:00 | – | openvas |
OpenVAS | Debian: Security Advisory (DLA-3434-1) | 29 May 202300:00 | – | openvas |
OpenVAS | Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-3161) | 9 Nov 202300:00 | – | openvas |
OpenVAS | Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-3457) | 15 Dec 202300:00 | – | openvas |
OpenVAS | Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2570) | 3 Aug 202300:00 | – | openvas |
OpenVAS | SUSE: Security Advisory (SUSE-SU-2025:0012-1) | 6 Jan 202500:00 | – | openvas |
#%NASL_MIN_LEVEL 80900
#
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory dla-3434. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('compat.inc');
if (description)
{
script_id(176434);
script_version("1.0");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/05/27");
script_cve_id("CVE-2022-39377", "CVE-2023-33204");
script_name(english:"Debian DLA-3434-1 : sysstat - LTS security update");
script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing one or more security-related updates.");
script_set_attribute(attribute:"description", value:
"The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the
dla-3434 advisory.
- sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in
versions 9.1.16 and newer but prior to 12.7.1, allocate_structures contains a size_t overflow in
sa_common.c. The allocate_structures function insufficiently checks bounds before arithmetic
multiplication, allowing for an overflow in the size allocated for the buffer representing system
activities. This issue may lead to Remote Code Execution (RCE). This issue has been patched in version
12.7.1. (CVE-2022-39377)
- sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. NOTE: this
issue exists because of an incomplete fix for CVE-2022-39377. (CVE-2023-33204)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036294");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/sysstat");
script_set_attribute(attribute:"see_also", value:"https://www.debian.org/lts/security/2023/dla-3434");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2022-39377");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2023-33204");
script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/buster/sysstat");
script_set_attribute(attribute:"solution", value:
"Upgrade the sysstat packages.
For Debian 10 buster, these problems have been fixed in version 12.0.3-2+deb10u2.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-33204");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2022/11/08");
script_set_attribute(attribute:"patch_publication_date", value:"2023/05/27");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/05/27");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:isag");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:sysstat");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:10.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Debian Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include('debian_package.inc');
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
var debian_release = get_kb_item('Host/Debian/release');
if ( isnull(debian_release) ) audit(AUDIT_OS_NOT, 'Debian');
debian_release = chomp(debian_release);
if (! preg(pattern:"^(10)\.[0-9]+", string:debian_release)) audit(AUDIT_OS_NOT, 'Debian 10.0', 'Debian ' + debian_release);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);
var pkgs = [
{'release': '10.0', 'prefix': 'isag', 'reference': '12.0.3-2+deb10u2'},
{'release': '10.0', 'prefix': 'sysstat', 'reference': '12.0.3-2+deb10u2'}
];
var flag = 0;
foreach package_array ( pkgs ) {
var _release = NULL;
var prefix = NULL;
var reference = NULL;
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (_release && prefix && reference) {
if (deb_check(release:_release, prefix:prefix, reference:reference)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : deb_report_get()
);
exit(0);
}
else
{
var tested = deb_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'isag / sysstat');
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo