CVE-2023-33204

CVE-2023-33204 affects sysstat up to version 12.7.2 and is a multiplication overflow in check_overflow() in common.c, arising from an incomplete fix for CVE-2022-39377. The vulnerability can enable buffer size miscalculation and, as noted in related advisories, may lead to remote code execution i...

CVE-2019-16167

CVE-2019-16167 affects sysstat and is caused by a memory corruption due to an integer overflow in remap_struct() within sa_common.c. The issue affects versions before 12.1.6. Impacts are memory corruption; practical exploit details are not provided in the supplied documents. The connected sources...

CVE-2019-19725

CVE-2019-19725 affects the Linux sysstat package up to version 12.2.0, where a double-free vulnerability exists in sa_common.c (function check_file_actlst). Exploitation could cause a crash and, per several advisories, may enable arbitrary code execution or local privileges impact on affected sys...

CVE-2022-39377

CVE-2022-39377 affects sysstat on 32-bit Linux, where allocate_structures in sa_common.c may overflow size calculations during arithmetic, enabling possible remote code execution. The issue stems from insufficient bounds checking before multiplication, tied to an incomplete fix; versions up to 12...

CVE-2018-19416

CVE-2018-19416 affects sysstat 12.1.1; the remap_struct function in sa_common.c triggers an out-of-bounds read during memmove. Connected advisories confirm fixes for CVE-2018-19416 (and related CVE-2018-19517) across multiple distributions (e.g., SUSE-SU-2019:1326-1; Mageia OpenVAS entries; RHEL/...

CVE-2018-19517

CVE-2018-19517 affects sysstat 12.1.1 where the remap_struct function in sa_common.c performs an out-of-bounds read during a memset call. This is documented across multiple advisories (e.g., SUSE-SU-2019:1326-1) as a fixable issue; related CVEs include CVE-2018-19416 (out-of-bounds read during me...