|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-1: CVE-2019-16167: sysstat: memory corruption due to an Integer Overflow in remap_struct() in sa_common.c | ||
|---|---|---|---|
| Product: | [Novell Products] SUSE Security Incidents | Reporter: | Alexander Bergmann <abergmann> |
| Component: | Incidents | Assignee: | Security Team bot <security-team> |
| Status: | RESOLVED FIXED | QA Contact: | Security Team bot <security-team> |
| Severity: | Normal | ||
| Priority: | P4 - Low | CC: | abergmann, pmonrealgonzalez, smash_bz |
| Version: | unspecified | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| URL: | https://smash.suse.de/issue/242073/ | ||
| Whiteboard: | CVSSv2:NVD:CVE-2019-16167:4.3:(AV:N/AC:M/Au:N/C:N/I:N/A:P) CVSSv3:SUSE:CVE-2019-16167:4.0:(AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L) | ||
| Found By: | Security Response Team | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
| Attachments: |
Backported patch for SLE-15
First reproducer Second reproducer |
||
|
Description
Alexander Bergmann
2019-09-10 07:40:54 UTC
Just for reference, see also: https://github.com/sysstat/sysstat/issues/232 https://github.com/sysstat/sysstat/commit/83fad9c895d1ac13f76af5883b7451b3302beef5 Created attachment 817553 [details]
Backported patch for SLE-15
We are using the stable version in all our codestreams where the remap_struct function returns void instead of int as returned from the development version. This is the backported patch for the stable version.
Tested in polio:
# sadf memcorrupt_sadf.in
Segmentation fault (core dumped)
# sadf memcorrupt_sadf2.in
Segmentation fault (core dumped)
# sadf memcorrupt_sadf.in
Invalid system activity file: memcorrupt_sadf.in
# sadf memcorrupt_sadf2.in
Invalid system activity file: memcorrupt_sadf2.in
Created attachment 819340 [details]
First reproducer
Created attachment 819341 [details]
Second reproducer
SUSE-SU-2019:2749-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1150114 CVE References: CVE-2019-16167 Sources used: SUSE Linux Enterprise Module for Server Applications 15-SP1 (src): sysstat-12.0.2-3.15.1 SUSE Linux Enterprise Module for Server Applications 15 (src): sysstat-12.0.2-3.15.1 SUSE Linux Enterprise Module for Basesystem 15-SP1 (src): sysstat-12.0.2-3.15.1 SUSE Linux Enterprise Module for Basesystem 15 (src): sysstat-12.0.2-3.15.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. SUSE-SU-2019:2752-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1150114 CVE References: CVE-2019-16167 Sources used: SUSE Linux Enterprise Server 12-SP4 (src): sysstat-12.0.2-10.27.1 SUSE Linux Enterprise Desktop 12-SP4 (src): sysstat-12.0.2-10.27.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. released openSUSE-SU-2019:2395-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1150114 CVE References: CVE-2019-16167 Sources used: openSUSE Leap 15.1 (src): sysstat-12.0.2-lp151.3.9.1 openSUSE-SU-2019:2397-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1150114 CVE References: CVE-2019-16167 Sources used: openSUSE Leap 15.0 (src): sysstat-12.0.2-lp150.16.1 SUSE-SU-2019:2752-2: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1150114 CVE References: CVE-2019-16167 Sources used: SUSE Linux Enterprise Server 12-SP5 (src): sysstat-12.0.2-10.27.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. |