PT-2023-9856 · Sysstat+11 · Sysstat+11

Pkopylov

Publicado

2023-05-18

Atualizado

2025-10-17

CVE-2023-33204

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions sysstat versions prior to 12.7.3

Description The issue is related to an integer overflow in the check overflow function in common.c, which can be exploited to execute arbitrary code. This problem exists due to an incomplete fix for a previous issue.

Recommendations For versions prior to 12.7.3, update to version 12.7.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the check overflow function in common.c until a patch is available.

Correção

Integer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-190

Identificadores relacionados

ALSA-2023:6569

ALSA-2023:7010

ALT-PU-2023-1964

ALT-PU-2023-2062

ALT-PU-2023-2077

ALT-PU-2023-2078

ALT-PU-2023-2079

AZL-26784

BDU:2025-00980

CESA-2023_7010

CVE-2023-33204

DLA-3434-1

DLA-4336-1

MGASA-2023-0203

OESA-2023-1301

OPENSUSE-SU-2024:12961-1

OPENSUSE-SU-2025_0019-1

RHSA-2023:6569

RHSA-2023:7010

RHSA-2023_6569

RHSA-2023_7010

ROSA-SA-2025-2663

SUSE-SU-2025:0012-1

SUSE-SU-2025:0019-1

USN-6145-1

Produtos afetados

Alt Linux

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Red Hat

Red Os

Suse

Ubuntu

Zvirt Node

Sysstat

PT-2023-9856 · Sysstat+11 · Sysstat+11

CVE-2023-33204

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 61