Security update for sysstat SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:2752-1 Final 1 1 2019-10-23T09:23:29Z current 2019-10-23T09:23:29Z 2019-10-23T09:23:29Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for sysstat This update for sysstat fixes the following issue: - CVE-2019-16167: Fixed a memory corruption due to an integer overflow. (bsc#1150114) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES12-SP4-SAP-Azure-2019-2752,Image SLES12-SP4-SAP-Azure-BYOS-2019-2752,Image SLES12-SP4-SAP-Azure-LI-BYOS-Production-2019-2752,Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production-2019-2752,Image SLES12-SP4-SAP-EC2-HVM-2019-2752,Image SLES12-SP4-SAP-EC2-HVM-BYOS-2019-2752,Image SLES12-SP4-SAP-GCE-2019-2752,Image SLES12-SP4-SAP-GCE-BYOS-2019-2752,Image SLES12-SP4-SAP-OCI-BYOS-2019-2752,Image SLES12-SP5-Azure-SAP-BYOS-2019-2752,Image SLES12-SP5-Azure-SAP-On-Demand-2019-2752,Image SLES12-SP5-EC2-SAP-BYOS-2019-2752,Image SLES12-SP5-EC2-SAP-On-Demand-2019-2752,Image SLES12-SP5-GCE-SAP-BYOS-2019-2752,Image SLES12-SP5-GCE-SAP-On-Demand-2019-2752,Image SLES12-SP5-OCI-BYOS-SAP-BYOS-2019-2752,Image SLES12-SP5-SAP-Azure-LI-BYOS-Production-2019-2752,Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production-2019-2752,SUSE-2019-2752,SUSE-SLE-DESKTOP-12-SP4-2019-2752,SUSE-SLE-SERVER-12-SP4-2019-2752 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20192752-1/ Link for SUSE-SU-2019:2752-1 https://lists.suse.com/pipermail/sle-security-updates/2019-October/006044.html E-Mail link for SUSE-SU-2019:2752-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1150114 SUSE Bug 1150114 https://www.suse.com/security/cve/CVE-2019-16167/ SUSE CVE CVE-2019-16167 page Image SLES12-SP4-SAP-Azure Image SLES12-SP4-SAP-Azure-BYOS Image SLES12-SP4-SAP-Azure-LI-BYOS-Production Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production Image SLES12-SP4-SAP-EC2-HVM Image SLES12-SP4-SAP-EC2-HVM-BYOS Image SLES12-SP4-SAP-GCE Image SLES12-SP4-SAP-GCE-BYOS Image SLES12-SP4-SAP-OCI-BYOS Image SLES12-SP5-Azure-SAP-BYOS Image SLES12-SP5-Azure-SAP-On-Demand Image SLES12-SP5-EC2-SAP-BYOS Image SLES12-SP5-EC2-SAP-On-Demand Image SLES12-SP5-GCE-SAP-BYOS Image SLES12-SP5-GCE-SAP-On-Demand Image SLES12-SP5-OCI-BYOS-SAP-BYOS Image SLES12-SP5-SAP-Azure-LI-BYOS-Production Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4 sysstat-12.0.2-10.27.1 sysstat-isag-12.0.2-10.27.1 sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-Azure sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-Azure-BYOS sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-Azure-LI-BYOS-Production sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-EC2-HVM sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-EC2-HVM-BYOS sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-GCE sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-GCE-BYOS sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP4-SAP-OCI-BYOS sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-Azure-SAP-On-Demand sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-EC2-SAP-BYOS sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-EC2-SAP-On-Demand sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-GCE-SAP-BYOS sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-GCE-SAP-On-Demand sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-OCI-BYOS-SAP-BYOS sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-SAP-Azure-LI-BYOS-Production sysstat-12.0.2-10.27.1 as a component of Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production sysstat-12.0.2-10.27.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 sysstat-12.0.2-10.27.1 as a component of SUSE Linux Enterprise Server 12 SP4 sysstat-isag-12.0.2-10.27.1 as a component of SUSE Linux Enterprise Server 12 SP4 sysstat-12.0.2-10.27.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 sysstat-isag-12.0.2-10.27.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 sysstat before 12.1.6 has memory corruption due to an Integer Overflow in remap_struct() in sa_common.c. CVE-2019-16167 Image SLES12-SP4-SAP-Azure-BYOS:sysstat-12.0.2-10.27.1 Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:sysstat-12.0.2-10.27.1 Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:sysstat-12.0.2-10.27.1 Image SLES12-SP4-SAP-Azure:sysstat-12.0.2-10.27.1 Image SLES12-SP4-SAP-EC2-HVM-BYOS:sysstat-12.0.2-10.27.1 Image SLES12-SP4-SAP-EC2-HVM:sysstat-12.0.2-10.27.1 Image SLES12-SP4-SAP-GCE-BYOS:sysstat-12.0.2-10.27.1 Image SLES12-SP4-SAP-GCE:sysstat-12.0.2-10.27.1 Image SLES12-SP4-SAP-OCI-BYOS:sysstat-12.0.2-10.27.1 Image SLES12-SP5-Azure-SAP-BYOS:sysstat-12.0.2-10.27.1 Image SLES12-SP5-Azure-SAP-On-Demand:sysstat-12.0.2-10.27.1 Image SLES12-SP5-EC2-SAP-BYOS:sysstat-12.0.2-10.27.1 Image SLES12-SP5-EC2-SAP-On-Demand:sysstat-12.0.2-10.27.1 Image SLES12-SP5-GCE-SAP-BYOS:sysstat-12.0.2-10.27.1 Image SLES12-SP5-GCE-SAP-On-Demand:sysstat-12.0.2-10.27.1 Image SLES12-SP5-OCI-BYOS-SAP-BYOS:sysstat-12.0.2-10.27.1 Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:sysstat-12.0.2-10.27.1 Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:sysstat-12.0.2-10.27.1 SUSE Linux Enterprise Desktop 12 SP4:sysstat-12.0.2-10.27.1 SUSE Linux Enterprise Server 12 SP4:sysstat-12.0.2-10.27.1 SUSE Linux Enterprise Server 12 SP4:sysstat-isag-12.0.2-10.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:sysstat-12.0.2-10.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:sysstat-isag-12.0.2-10.27.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192752-1/ https://www.suse.com/security/cve/CVE-2019-16167.html CVE-2019-16167 https://bugzilla.suse.com/1150114 SUSE Bug 1150114