388 matches found
procps: ps buffer overflow
A heap-based buffer overflow vulnerability was found in the procps project when handling untrusted input with the -C option. This issue may allow a user with "ps" utility access to write unfiltered data into the process heap, triggering an out-of-bounds write, consuming memory and causing a crash...
Low: Red Hat Security Advisory: procps-ng security and bug fix update
An update for procps-ng is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Low: procps-ng security and bug fix update
The procps-ng packages contain a set of system utilities that provide system information, including ps, free, skill, pkill, pgrep, snice, tload, top, uptime, vmstat, w, watch, and pwdx. Security Fixes: procps: ps buffer overflow CVE-2023-4016 For more details about the security issues, including...
ALSA-2023:6705 Low: procps-ng security and bug fix update
The procps-ng packages contain a set of system utilities that provide system information, including ps, free, skill, pkill, pgrep, snice, tload, top, uptime, vmstat, w, watch, and pwdx. Security Fixes: procps: ps buffer overflow CVE-2023-4016 For more details about the security issues, including...
RHEL 9 : procps-ng (RHSA-2023:6705)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:6705 advisory. The procps-ng packages contain a set of system utilities that provide system information, including ps, free, skill, pkill, pgrep, snice, tload, top,...
F5 Networks BIG-IP : procps-ng vulnerability (K83271321)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K83271321 advisory. - procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc. leading to truncation/integ...
F5 Networks BIG-IP : procps-ng vulnerability (K16124204)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K16124204 advisory. - procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strv...
F5 Networks BIG-IP : procps-ng vulnerability (K00409335)
The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3 / 17.5.1. It is, therefore, affected by a vulnerability as referenced in the K00409335 advisory. procps-ng before version 3.3.15 is vulnerable to a local privilege escalation in top. If a user runs top with HOME uns...
Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3092)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3106)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3018)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3041)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the information collection utility for running processes, the procps-ng command-line utility, allows a hacker to cause a service failure.
The vulnerability of the procps-ng command-line tool for collecting information about running processes is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure by writing unlimited amounts of unfilter...
Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-2886)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 7 : procps-ng (ELSA-2019-2189)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-2189 advisory. 3.3.10-26 - free: unreclaimable slabs counted into free memory, used mem incorrect - Resolves: rhbz1699264 3.3.10-25 - ps: recognize SCHEDDEADLINE in CLS field,...
SUSE SLES12 Security Update : procps (SUSE-SU-2023:3471-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3471-1 advisory. - CVE-2023-4016: Fixed ps buffer overflow bsc1214290. Tenable has extracted the preceding description block directly from the SUSE security...
SUSE: Security Advisory (SUSE-SU-2023:3471-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:3472-1 Security update for procps
This update for procps fixes the following issues: - CVE-2023-4016: Fixed ps buffer overflow bsc1214290...
SUSE-SU-2023:3471-1 Security update for procps
This update for procps fixes the following issues: - CVE-2023-4016: Fixed ps buffer overflow bsc1214290...
[SECURITY] Fedora 38 Update: procps-ng-3.3.17-11.fc38
The procps package contains a set of system utilities that provide system information. Procps includes ps, free, skill, pkill, pgrep, snice, tload, top, uptime, vmstat, pidof, pmap, slabtop, w, watch, pwdx and pidwait. The ps command displays a snapshot of running processes. The top command...