A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an attacker has access to a compromised PCP system account. The issue is related to the pmpost tool, which is used to log messages in the system. Under certain conditions, it runs with high-level privileges.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "libpcp-archive1", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-archive1-dev", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-gui2", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-gui2-dev", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-import-perl", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-import1", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-import1-dev", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-logsummary-perl", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-mmv-perl", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-mmv1", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-mmv1-dev", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-pmda-perl", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-pmda3", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-pmda3-dev", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-trace2", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-trace2-dev", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-web1", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp-web1-dev", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp3", "binary_version": "6.3.1-1" }, { "binary_name": "libpcp3-dev", "binary_version": "6.3.1-1" }, { "binary_name": "pcp", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-conf", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-doc", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-pcp2elasticsearch", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-pcp2graphite", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-pcp2influxdb", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-pcp2json", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-pcp2spark", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-pcp2xlsx", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-pcp2xml", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-pcp2zabbix", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-export-zabbix-agent", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-gui", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-import-collectl2pcp", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-import-ganglia2pcp", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-import-iostat2pcp", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-import-mrtg2pcp", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-import-sar2pcp", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-import-sheet2pcp", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-pmda-infiniband", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-testsuite", "binary_version": "6.3.1-1" }, { "binary_name": "pcp-zeroconf", "binary_version": "6.3.1-1" }, { "binary_name": "python3-pcp", "binary_version": "6.3.1-1" } ] }