VulnerableCode Package Details - pkg:deb/debian/sysstat@5.0.6-5

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/sysstat@5.0.6-5

Essentials
History (7)

purl	pkg:deb/debian/sysstat@5.0.6-5

Next non-vulnerable version	12.7.5-2
Latest non-vulnerable version	12.7.5-2
Risk

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-3hs7-as1h-buef Aliases: CVE-2018-19416		12.0.3-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-5zbh-dep4-kuag Aliases: CVE-2023-33204		12.6.1-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 12.7.5-2 Affected by 0 other vulnerabilities.
VCID-suzr-jrrc-d3gn Aliases: CVE-2018-19517		12.0.3-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-w6et-td98-cyb4 Aliases: CVE-2019-16167		12.5.2-2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-wajr-srfb-x7hm Aliases: CVE-2022-39377		12.6.1-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-9xfh-3d6r-y3gj	The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107.	CVE-2004-0108
VCID-tukq-rxvv-s7d8	The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.	CVE-2004-0107

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T11:54:29.782449+00:00	Debian Oval Importer	Fixing	VCID-9xfh-3d6r-y3gj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T11:36:47.670286+00:00	Debian Oval Importer	Fixing	VCID-tukq-rxvv-s7d8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T09:59:05.864809+00:00	Debian Oval Importer	Affected by	VCID-w6et-td98-cyb4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T07:12:12.025092+00:00	Debian Oval Importer	Affected by	VCID-suzr-jrrc-d3gn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T07:01:27.922912+00:00	Debian Oval Importer	Affected by	VCID-5zbh-dep4-kuag	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T03:36:05.080023+00:00	Debian Oval Importer	Affected by	VCID-3hs7-as1h-buef	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T02:26:14.384014+00:00	Debian Oval Importer	Affected by	VCID-wajr-srfb-x7hm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0