OESA-2021-1412

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2021-1412

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2021-1412.json

JSON Data

https://api.test.osv.dev/v1/vulns/OESA-2021-1412

Upstream

CVE-2019-18874

Published

2021-10-30T11:03:19Z

Modified

2025-08-12T05:04:34.668605Z

Summary

python-psutil security update

Details

psutil (process and system utilities) is a cross-platform library for retrieving information on running processes and system utilization (CPU, memory, disks, network, sensors) in Python. It is useful mainly for system monitoring, profiling and limiting process resources and management of running processes.It implements many functionalities offered by classic UNIX command line tools such as ps, top, iotop, lsof, netstat, ifconfig, free and others.

Security Fix(es):

psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs because of refcount mishandling within a while or for loop that converts system data into a Python object.(CVE-2019-18874)

Database specific

{
    "severity": "High"
}

References

Affected packages

openEuler:20.03-LTS-SP1 / python-psutil

Package

Name: python-psutil
Purl: pkg:rpm/openEuler/python-psutil&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.4.3-9.oe1

Ecosystem specific

{
    "aarch64": [
        "python-psutil-debuginfo-5.4.3-9.oe1.aarch64.rpm",
        "python-psutil-debugsource-5.4.3-9.oe1.aarch64.rpm",
        "python3-psutil-5.4.3-9.oe1.aarch64.rpm",
        "python2-psutil-5.4.3-9.oe1.aarch64.rpm"
    ],
    "x86_64": [
        "python-psutil-debugsource-5.4.3-9.oe1.x86_64.rpm",
        "python3-psutil-5.4.3-9.oe1.x86_64.rpm",
        "python-psutil-debuginfo-5.4.3-9.oe1.x86_64.rpm",
        "python2-psutil-5.4.3-9.oe1.x86_64.rpm"
    ],
    "src": [
        "python-psutil-5.4.3-9.oe1.src.rpm"
    ]
}

openEuler:20.03-LTS-SP2 / python-psutil

Package

Name: python-psutil
Purl: pkg:rpm/openEuler/python-psutil&distro=openEuler-20.03-LTS-SP2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.4.3-9.oe1

Ecosystem specific

{
    "aarch64": [
        "python-psutil-debuginfo-5.4.3-9.oe1.aarch64.rpm",
        "python-psutil-debugsource-5.4.3-9.oe1.aarch64.rpm",
        "python3-psutil-5.4.3-9.oe1.aarch64.rpm",
        "python2-psutil-5.4.3-9.oe1.aarch64.rpm"
    ],
    "x86_64": [
        "python-psutil-debugsource-5.4.3-9.oe1.x86_64.rpm",
        "python3-psutil-5.4.3-9.oe1.x86_64.rpm",
        "python-psutil-debuginfo-5.4.3-9.oe1.x86_64.rpm",
        "python2-psutil-5.4.3-9.oe1.x86_64.rpm"
    ],
    "src": [
        "python-psutil-5.4.3-9.oe1.src.rpm"
    ]
}