sysstat: check_overflow() function can work incorrectly that lead to an overflow

A vulnerability was found in sysstat. This security flaw happens because it allows a multiplication integer overflow in checkoverflow in common.c. This issue exists due to an incomplete fix for CVE-2022-39377...

OESA-2023-1301 sysstat security update

The sysstat package contains various utilities, common to many commercial Unixes, to monitor system performance and usage activity:iostat: reports CPU statistics and input/output statistics for block devices and partitions.mpstat: reports individual or combined processor related statistics.pidsta...

sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377.

...

AZL-26784 CVE-2023-33204 affecting package sysstat for versions less than 12.7.1-2

sysstat through 12.7.2 allows a multiplication integer overflow in checkoverflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377...

sysstat 输入验证错误漏洞

sysstat is a set of system performance monitoring tools for the Linux platform. A security vulnerability exists in sysstat 12.7.2 and earlier versions, which stems from a multiplicative integer overflow in checkoverflow in common.c. The vulnerability is caused by a multiplicative integer overflow...