collectd/collectd

collectd/collectd

Releases263

Frequency3 weeks 4 days

Last Release over 2 years ago

Stars3.36K

The system statistics collection daemon. Please send Pull Requests here!

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2017-16820 ↗	Nov 14, 2017Tuesday, 14 November 2017, 21:29	—	10 HIGH
The csnmp_read_table function in snmp.c in the SNMP plugin in collectd before 5.6.3 is susceptible to a double free in a certain error case, which could lead to a crash (or potentially have other impact).
CVE-2017-7401 ↗	Apr 3, 2017Monday, 3 April 2017, 14:59	—	5 MEDIUM
Incorrect interaction of the parse_packet() and parse_part_sign_sha256() functions in network.c in collectd 5.7.1 and earlier allows remote attackers to cause a denial of service (infinite loop) of a collectd instance (configured with "SecurityLevel None" and with empty "AuthFile" options) via a crafted UDP packet.
CVE-2016-6254 ↗	Aug 19, 2016Friday, 19 August 2016, 21:59	—	6.4 MEDIUM
Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet.