On Sat, Nov 24, 2018 at 09:07:45PM +0100, Salvatore Bonaccorso wrote: > Source: sysstat > Version: 12.0.1-1 > Severity: important > Tags: security upstream > Forwarded: https://github.com/sysstat/sysstat/issues/199 > > Hi, > > The following vulnerability was published for sysstat, similar to > CVE-2018-19416. > > CVE-2018-19517[0]: > | An issue was discovered in sysstat 12.1.1. The remap_struct function in > | sa_common.c has an out-of-bounds read during a memset call, as > | demonstrated by sadf.
Fixed by https://github.com/sysstat/sysstat/commit/fbc691eaaa10d0bcea6741d5a223dc3906106548 Can we please get that fixed for buster? Cheers, Moritz