9 matches found
CLSA-2026-1777539688 sysstat: Fix of 2 CVEs
CVE-2022-39377: sizet overflow in allocatestructures sacommon.c may cause buffer overflow leading to RCE - CVE-2023-33204: integer overflow in checkoverflow common.c - incomplete fix for CVE-2022-39377...
The allocate_structures function insufficiently checks bounds before arithmetic multiplication
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...
The vulnerability of the `allocate_structures` function in the sysstat system performance monitoring and analysis tool allows a attacker to execute arbitrary code or cause service interruptions.
The vulnerability of the allocatestructures function in the sysstat system performance monitoring and analysis tool is related to insufficient checking of boundaries before arithmetic multiplication. This allows the buffer allocated for representing system actions to overflow. Exploiting this...
sysstat: arithmetic overflow in allocate_structures() on 32 bit systems
An arithmetic overflow issue was discovered in Sysstat on 32-bit systems. The allocatestructures function in sacommon.c insufficiently checks bounds before arithmetic multiplication, allowing an overflow in the size allocated for the buffer representing system activities. The vulnerability can be...
sysstat: arithmetic overflow in allocate_structures() on 32 bit systems
An arithmetic overflow issue was discovered in Sysstat on 32-bit systems. The allocatestructures function in sacommon.c insufficiently checks bounds before arithmetic multiplication, allowing an overflow in the size allocated for the buffer representing system activities. The vulnerability can be...
SUSE CVE-2022-39377
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...
DEBIAN-CVE-2022-39377
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...
UBUNTU-CVE-2022-39377
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...
PT-2022-7425 · Sysstat +10 · Sysstat +10
Name of the Vulnerable Software and Affected Versions: sysstat versions 9.1.16 through 12.7.0 Description: The issue is related to the allocate structures function in sa common.c, which insufficiently checks bounds before arithmetic multiplication, allowing for an overflow in the size allocated f...