Bug#914553: sysstat: CVE-2018-19517: out of bound read in sadf which leads to crash
On Sat, Nov 24, 2018 at 09:07:45PM +0100, Salvatore Bonaccorso wrote: > Source: sysstat > Version: 12.0.1-1 > Severity: important > Tags: security upstream > Forwarded: https://github.com/sysstat/sysstat/issues/199 > > Hi, > > The following vulnerability was published for sysstat, similar to > CVE-2018-19416. > > CVE-2018-19517[0]: > | An issue was discovered in sysstat 12.1.1. The remap_struct function in > | sa_common.c has an out-of-bounds read during a memset call, as > | demonstrated by sadf. Fixed by https://github.com/sysstat/sysstat/commit/fbc691eaaa10d0bcea6741d5a223dc3906106548 Can we please get that fixed for buster? Cheers, Moritz
Bug#914553: sysstat: CVE-2018-19517: out of bound read in sadf which leads to crash
Source: sysstat Version: 12.0.1-1 Severity: important Tags: security upstream Forwarded: https://github.com/sysstat/sysstat/issues/199 Hi, The following vulnerability was published for sysstat, similar to CVE-2018-19416. CVE-2018-19517[0]: | An issue was discovered in sysstat 12.1.1. The remap_struct function in | sa_common.c has an out-of-bounds read during a memset call, as | demonstrated by sadf. The poc to verify a fix (base64 encoded here): ltV1ITAwMDBIAQAAMDAwMAEBMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAw MDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwBQAAADAwMDkA AAACAAAkEDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAw MDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAw MDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAw MDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAw MDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAw MDAwMDABMDAwMAIBAAgwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMAAw MDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMAEBABAwMDAwMDAwMDAwMDAw MDAwMDAwMDAwMAAwMDAwMDAwMDAwMDAwMDAwMDAwMDAGiwEBACgA AAAF/wAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMAAwMDAwMDAw MDAwMDAwMDAwADAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDAwMDA= This is similar to #914384 but fo the issue triggered during the memset call. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2018-19517 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19517 Please adjust the affected versions in the BTS as needed. Regards, Salvatore
