CVE-2022-39377

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

PT-2022-7425 · Sysstat +10 · Sysstat +10

Name of the Vulnerable Software and Affected Versions: sysstat versions 9.1.16 through 12.7.0 Description: The issue is related to the allocate structures function in sa common.c, which insufficiently checks bounds before arithmetic multiplication, allowing for an overflow in the size allocated f...

CVE-2022-39377

CVE-2022-39377 affects sysstat on 32-bit Linux, where allocate_structures in sa_common.c may overflow size calculations during arithmetic, enabling possible remote code execution. The issue stems from insufficient bounds checking before multiplication, tied to an incomplete fix; versions up to 12...

sysstat 安全漏洞

sysstat is a set of system performance monitoring tools for the Linux platform. A security vulnerability exists in sysstat versions 9.1.16 and later to 12.7.1 and earlier, which stems from the allocatestructures function not adequately checking boundaries before arithmetic multiplication, resulti...

CVE-2022-39377 sysstat Incorrect Buffer Size calculation on 32-bit systems results in RCE via buffer overflow

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

CVE-2022-39377 sysstat Incorrect Buffer Size calculation on 32-bit systems results in RCE via buffer overflow

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

CVE-2022-39377 sysstat Incorrect Buffer Size calculation on 32-bit systems results in RCE via buffer overflow

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

CVE-2022-39377

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

The vulnerability of the remap_struct() function in the sa_common.c component of the Sysstat performance measurement and analysis tool allows a hacker to cause a service failure.

The vulnerability of the remapstruct function in the sacommon.c component of the Sysstat performance measurement and analysis tool is related to buffer overflow attacks. Exploiting this vulnerability allows a remote attacker to cause a service failure...

SUSE: Security Advisory (SUSE-SU-2020:0026-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2020:0026-2 Security update for sysstat

This update for sysstat fixes the following issues: Security issue fixed: - CVE-2019-19725: Fixed double free in checkfileactlst in sacommon.c bsc1159104. Bug fixes: - Enable log information of starting/stoping services. bsc1144923, jscSLE-5958...

new packages: sysstat

An update is available for sysstat. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.0...

ALBA-2022:1892 sysstat bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

sysstat bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

sysstat bug fix and enhancement update

An update is available for sysstat. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.6...

RHEL 8 : sysstat (RHSA-2022:0633)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:0633 advisory. The sysstat packages provide the sar and iostat commands. These commands enable system monitoring of disk, network, and other I/O activity. Security...

sysstat: memory corruption due to an integer overflow in remap_struct in sa_common.c

An integer overflow vulnerability was found in sysstat in the way the sadf command processes the contents of data files created by the sar command. A local attacker could exploit this flaw by creating a specially crafted file with malformed data that, when loaded by a victim, causes the applicati...

Low: Red Hat Security Advisory: sysstat security update

An update for sysstat is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Mageia: Security Advisory (MGASA-2020-0064)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2019-0168)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...