[ubuntu/disco-security] sysstat 12.0.1-1ubuntu0.1 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Mon Jan 20 12:14:50 UTC 2020

sysstat (12.0.1-1ubuntu0.1) disco-security; urgency=medium

  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2019-16167.patch: Check that the number of fields
      (long long integers, long integers or integers) as read from
      a system activity binary datafile multiplied by its alignment width
      doesn't overflow in sa_common.c.
    - CVE-2019-16167
  * SECURITY UPDATE: double free
    - debian/patches/CVE-2019-19725.patch: adding a NULL to buffer after
      first free in sa_common.c.
    - CVE-2019-19725

Date: 2020-01-17 13:07:23.752314+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
-------------- next part --------------
Sorry, changesfile not available.

More information about the Disco-changes mailing list