10 matches found
Astra Linux – Vulnerability in sysstat
Before version 12.1.6, sysstat experienced memory corruption due to an integer overflow in the remapstruct function in sacommon.c...
CLSA-2026-1777539688 sysstat: Fix of 2 CVEs
CVE-2022-39377: sizet overflow in allocatestructures sacommon.c may cause buffer overflow leading to RCE - CVE-2023-33204: integer overflow in checkoverflow common.c - incomplete fix for CVE-2022-39377...
The allocate_structures function insufficiently checks bounds before arithmetic multiplication
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...
EUVD-2019-9327
Malware in sbrugna...
SUSE CVE-2018-19517
An issue was discovered in sysstat 12.1.1. The remapstruct function in sacommon.c has an out-of-bounds read during a memset call, as demonstrated by sadf...
SUSE CVE-2019-19725
sysstat through 12.2.0 has a double free in checkfileactlst in sacommon.c...
DEBIAN-CVE-2022-39377
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...
sysstat: memory corruption due to an integer overflow in remap_struct in sa_common.c
An integer overflow vulnerability was found in sysstat in the way the sadf command processes the contents of data files created by the sar command. A local attacker could exploit this flaw by creating a specially crafted file with malformed data that, when loaded by a victim, causes the applicati...
UBUNTU-CVE-2019-19725
sysstat through 12.2.0 has a double free in checkfileactlst in sacommon.c...
DEBIAN-CVE-2018-19517
An issue was discovered in sysstat 12.1.1. The remapstruct function in sacommon.c has an out-of-bounds read during a memset call, as demonstrated by sadf...