The allocate_structures function insufficiently checks bounds before arithmetic multiplication

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

EUVD-2025-200096

KissFFT versions prior to the fix commit 1b083165 contain an integer overflow in kissfftalloc in kissfft.c on platforms where sizet is 32-bit. The nfft parameter is not validated before being used in a size calculation sizeofkissfftcpx nfft - 1, which can wrap to a small value when nfft is large...

EUVD-2014-1274

Malware in sbrugna...

EUVD-2022-41838

Malicious code in bioql PyPI...

CVE-2014-125106

Nanopb before 0.3.1 allows sizet overflows in pbdecbytes and pbdecstring...

Advisory ROSA-SA-2024-2402

Software: sysstat 11.7.3 OS: ROSA Virtualization 2.1 packageevrstring: sysstat-11.7.3-9.rv3 CVE-ID: CVE-2022-39377 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: sysstat is a set of system performance enhancement tools for the Linux operating system. On 32-bit systems, allocatestructures contains a sizet...

NewStart CGSL MAIN 6.06 : sysstat Vulnerability (NS-SA-2023-0138)

The remote NewStart CGSL host, running version MAIN 6.06, has sysstat packages installed that are affected by a vulnerability: - sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures...

Advisory ROSA-SA-2023-2198

Software: sysstat 12.7.2 OS: ROSA-CHROME packageevrstring: sysstat-12.7.2-1.src.rpm CVE-ID: CVE-2022-39377 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: On 32-bit systems in versions 9.1.16 and newer but before 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures...

CVE-2014-125106

Nanopb before 0.3.1 allows sizet overflows in pbdecbytes and pbdecstring...

Sql injection

Nanopb before 0.3.1 allows sizet overflows in pbdecbytes and pbdecstring...

CVE-2014-125106

Nanopb before 0.3.1 allows sizet overflows in pbdecbytes and pbdecstring...

CVE-2014-125106

Nanopb before 0.3.1 allows sizet overflows in pbdecbytes and pbdecstring...

PT-2023-10174 · Nanopb · Nanopb

Name of the Vulnerable Software and Affected Versions: Nanopb versions prior to 0.3.1 Description: The issue allows size t overflows in pb dec bytes and pb dec string. Recommendations: For versions prior to 0.3.1, update to version 0.3.1 or later to resolve the issue...

CVE-2014-125106

Nanopb prior to 0.3.1 contains a size_t overflow in the decoding routines pb_dec_bytes and pb_dec_string. Affected software is Nanopb; the issue arises in versions before 0.3.1. The vulnerability is described across multiple sources as a size_t overflow, with high-severity CVSS metrics indicating...

Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2232)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2100)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2049)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 8 : sysstat (ELSA-2023-2800)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-2800 advisory. 11.7.3-9.0.1 - add mpstat -H option to also display physically hotplugged vCPUs Orabug: 34683071 11.7.3-9 - add -f flag to force fdatasync after sa file update...

AlmaLinux 8 : sysstat (ALSA-2023:2800)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2023:2800 advisory. - sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1,...

EulerOS Virtualization 2.10.1 : sysstat (EulerOS-SA-2023-1899)

According to the versions of the sysstat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but...