AVG-705 log

Package procps-ng
Status Fixed
Severity Medium
Type multiple issues
Affected 3.3.14-1
Fixed 3.3.15-1
Current 4.0.4-3 [core]
Ticket None
Created Thu May 17 20:42:51 2018
Issue Severity Remote Type Description
CVE-2018-1126 Medium No Arbitrary code execution
A security issue has been found in procps-ng <= 3.3.14, in the xcalloc() and xrealloc() functions, where the use of an unsigned int instead of a size_t...
CVE-2018-1125 Medium No Arbitrary code execution
A potential stack-based buffer overflow has been found in the pgrep utility of procps-ng <= 3.3.14. If the strlen() of one of the cmdline arguments is...
CVE-2018-1124 Medium No Privilege escalation
A security issue has been found in procps-ng <= 3.3.14. An attacker can exploit an integer overflow in libprocps's file2strvec() function and carry out an...
CVE-2018-1123 Low No Denial of service
A security issue has been found in procps-ng <= 3.3.14 where an attacker can overflow the output buffer of ps, when executed by another user, administrator,...
CVE-2018-1122 Low No Privilege escalation
The top utility from procps-ng <= 3.3.14 reads its configuration file from the current working directory, without any security check, if the HOME...