openSUSE has issued an advisory on April 8: https://lists.opensuse.org/opensuse-updates/2019-04/msg00086.html Mageia 6 is also affected.
Whiteboard: (none) => MGA6TOO
Assigning to all packagers collectively, since there is no registered maintainer for this package. Also CC'ing two committers.
Assignee: bugsquad => pkg-bugsCC: (none) => geiger.david68210, marja11, smelror
Already fixed in current 12.1.4 release from Cauldron!
Fixed for mga6 updating to latest 12.1.4 release!
Advisory: ======================== Updated sysstat package fix security vulnerabilities: Out-of-bounds read during a memmove call inside the remap_struct function (CVE-2018-19416). Out-of-bounds read during a memset call inside the remap_struct function (CVE-2018-19517). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19416 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19517 https://lists.opensuse.org/opensuse-updates/2019-04/msg00086.html ======================== Updated packages in core/updates_testing: ======================== sysstat-12.1.4-1.mga6 from sysstat-12.1.4-1.mga6.src.rpm
Source RPM: sysstat-12.1.4-1.mga7.src.rpm => sysstat-11.4.4-1.mga6.src.rpmVersion: Cauldron => 6Whiteboard: MGA6TOO => (none)Assignee: pkg-bugs => qa-bugs
Installed and tested without issue. Tested all command with various arguments. All seems correct. No issues noticed. System: Mageia 6, x86_64, Intel CPU. $ uname -a Linux marte 4.14.116-desktop-1.mga6 #1 SMP Sat May 4 08:34:09 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux $ rpm -q sysstat sysstat-12.1.4-1.mga6
Whiteboard: (none) => MGA6-64-OKCC: (none) => mageia
Should be good. Validating. Advisory in Comment 4.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
Keywords: (none) => advisoryCC: (none) => tmb
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2019-0168.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED