libpcp-devel-6.3.8-1.1 on GA media (moderate)

libpcp-devel-6.3.8-1.1 on GA media Announcement ID: openSUSE-SU-2026:10705-1 Rating: moderate Cross-References: CVE-2024-45769 CVE-2024-45770 CVSS scores: CVE-2024-45769 SUSE : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-45769 SUSE : 5.7...

CLSA-2026-1778127227 pcp: Fix of 2 CVEs

CVE-2024-45770: guard pmpost against symlink attacks on $PCPLOGDIR/NOTICES - CVE-2024-45769: harden libpcp pmDecodeValueSet to prevent heap corruption from crafted PDUs...

PT-2026-38522

These are all security issues fixed in the libpcp-devel-6.3.8-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10705-1 libpcp-devel-6.3.8-1.1 on GA media

These are all security issues fixed in the libpcp-devel-6.3.8-1.1 package on the GA media of openSUSE Tumbleweed...

EUVD-2012-3388

Malware in sbrugna...

pcp security update

6.2.0-5.0.1 - Fixed libpcp derived metric issue for ol9 Orabug: 36538820 6.2.0-5 - Fix buffer sizing checks in pmstore PDU handling RHEL-57805 - Guard against symlink attacks in pmpost program RHEL-57810 - Fix libpcpweb webgroup slow request refcounting RHEL-58306 - Updated pmdahacluster for newe...

OPENSUSE-SU-2024:10165-1 libpcp-devel-3.10.4-1.23 on GA media

These are all security issues fixed in the libpcp-devel-3.10.4-1.23 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:11152-1 libpcp-devel-5.2.2-3.4 on GA media

These are all security issues fixed in the libpcp-devel-5.2.2-3.4 package on the GA media of openSUSE Tumbleweed...

pcp security, bug fix, and enhancement update

6.2.0-2.0.1 - Fixed libpcp derived metric issue for ol9 Orabug: 36538820 6.2.0-2 - Disable RESP proxying by default in pmproxy RHEL-30719...

SUSE SLED15 / SLES15 Security Update : pcp (SUSE-SU-2021:0565-1)

This update for pcp fixes the following issues : Drop unnecessary %pre/%post recursive chown calls bsc1152533 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as mu...

openSUSE Security Update : pcp (openSUSE-SU-2012:1081-1)

Update to pcp-3.6.5. + Fixes for security advisory CVE-2012-3418; bnc775009. + Workaround for security advisory CVE-2012-3419; bnc775010. + Fixes for security advisory CVE-2012-3420; bnc775011. + Fixes for security advisory CVE-2012-3421; bnc775013. %NASLMINLEVEL 70300 C Tenable Network Security,...

SuSE 11.2 Security Update : pcp (SAT Patch Number 7221)

pcp was updated to version 3.6.10 which fixes security issues and also brings a lot of new features. - Update to pcp-3.6.10. - Transition daemons to run under an unprivileged account. - Fixes for security advisory CVE-2012-5530: tmpfile flaws;. bnc782967 - Fix pcp1 command short-form pmlogger...

CVE-2012-3418

libpcp in Performance Co-Pilot PCP before 3.6.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via 1 a PDU with the numcreds field value greater than the number of actual elements to the pmDecodeCreds function in pcreds.c; 2 the string byte number value t...

CVE-2012-3421

The pduread function in pdu.c in libpcp in Performance Co-Pilot PCP before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service pmcd hang by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."...

CVE-2012-3421

The pduread function in pdu.c in libpcp in Performance Co-Pilot PCP before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service pmcd hang by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."...

Code injection

Multiple memory leaks in Performance Co-Pilot PCP before 3.6.5 allow remote attackers to cause a denial of service memory consumption or daemon crash via a large number of PDUs with 1 a crafted context number to the DoFetch function in pmcd/src/dofetch.c or 2 a negative type value to the pmGetPDU...

Integer overflow

libpcp in Performance Co-Pilot PCP before 3.6.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via 1 a PDU with the numcreds field value greater than the number of actual elements to the pmDecodeCreds function in pcreds.c; 2 the string byte number value t...

Code injection

The pduread function in pdu.c in libpcp in Performance Co-Pilot PCP before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service pmcd hang by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."...

CVE-2012-3418

libpcp in Performance Co-Pilot PCP before 3.6.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via 1 a PDU with the numcreds field value greater than the number of actual elements to the pmDecodeCreds function in pcreds.c; 2 the string byte number value t...

CVE-2012-3421

The pduread function in pdu.c in libpcp in Performance Co-Pilot PCP before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service pmcd hang by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."...