openSUSE has issued an advisory on October 28: https://lists.opensuse.org/opensuse-updates/2019-10/msg00168.html The issue is fixed upstream in 12.1.6.
Done!
Advisory: ======================== Updated sysstat package fixes security vulnerability: Memory corruption due to an integer overflow (CVE-2019-16167). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16167 https://lists.opensuse.org/opensuse-updates/2019-10/msg00168.html ======================== Updated packages in core/updates_testing: ======================== sysstat-12.1.6-1.mga7 from sysstat-12.1.6-1.mga7.src.rpm
CC: (none) => geiger.david68210Assignee: geiger.david68210 => qa-bugs
Installed and tested without issues. Tested the following CLI binaries: /usr/bin/iostat /usr/bin/mpstat /usr/bin/pidstat /usr/bin/sadf /usr/bin/sar No issues where observed in the various tests. Don't have CIFS or tapes so can't do a meaningful test for these CLI binaries: /usr/bin/cifsiostat /usr/bin/tapestat System: Mageia 7, x86_64, Intel CPU, 2 SSD drives, 1 HDD drive, 3 USB drives. $ uname -a Linux marte 5.3.13-desktop-2.mga7 #1 SMP Mon Nov 25 20:30:40 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux $ rpm -q sysstat sysstat-12.1.6-1.mga7
CC: (none) => mageiaWhiteboard: (none) => MGA7-64-OK
CC: (none) => tmb, sysadmin-bugsKeywords: (none) => advisory, validated_update
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2019-0371.html
Status: NEW => RESOLVEDResolution: (none) => FIXED