cbcvebase.
CVE-2022-39377
published 2022-11-08

CVE-2022-39377: sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1…

PriorityP341high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
1.10%
61.4th percentile
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocate_structures contains a size_t overflow in sa_common.c. The allocate_structures function insufficiently checks bounds before arithmetic multiplication, allowing for an overflow in the size allocated for the buffer representing system activities. This issue may lead to Remote Code Execution (RCE). This issue has been patched in version 12.7.1.

Affected

25 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debiansysstat< sysstat 12.6.1-1 (bookworm)sysstat 12.6.1-1 (bookworm)
debiansysstat< sysstat 12.5.2-2+deb11u1 (bullseye)sysstat 12.5.2-2+deb11u1 (bullseye)
fedoraprojectfedora
fedoraprojectfedora
fedoraprojectfedora
fedoraprojectfedora
msrccbl2_sysstat_12.7.1-1_on_cbl_mariner_2.0
msrccbl2_sysstat_12.7.1-2_on_cbl_mariner_2.0
msrccbl_mariner_2.0_arm
msrccbl_mariner_2.0_x64
msrccm1_sysstat_12.3.3-2_on_cbl_mariner_1.0
sysstat_projectsysstat<= 12.7.2
sysstat_projectsysstat>= 0 < 12.5.2-2+deb11u112.5.2-2+deb11u1
sysstat_projectsysstat>= 0 < 12.6.1-112.6.1-1
sysstat_projectsysstat>= 0 < 12.6.1-112.6.1-1
sysstat_projectsysstat>= 0 < 12.6.1-212.6.1-2
sysstat_projectsysstat>= 0 < 12.6.1-112.6.1-1
sysstat_projectsysstat>= 0 < 12.6.1-212.6.1-2
sysstat_projectsysstat>= 0 < 12.2.0-2ubuntu0.312.2.0-2ubuntu0.3
sysstat_projectsysstat>= 0 < 12.5.2-2ubuntu0.212.5.2-2ubuntu0.2
sysstat_projectsysstat>= 0 < 10.2.0-1ubuntu0.1~esm110.2.0-1ubuntu0.1~esm1
sysstat_projectsysstat>= 0 < 11.2.0-1ubuntu0.3+esm211.2.0-1ubuntu0.3+esm2
sysstat_projectsysstat>= 0 < 11.6.1-1ubuntu0.2+esm111.6.1-1ubuntu0.2+esm1
sysstat_projectsysstat>= 9.1.6 < 12.6.112.6.1

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH
vendor_msrc7.8HIGH
vendor_debian7.0HIGH
vendor_redhat7.0HIGH
vendor_ubuntu7.0HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.