pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ALT Vulnerability

Browse Source
This commit is contained in:
Иван Пепеляев 2024-02-14 01:31:38 +00:00
parent 8bcef81bd4
commit 079e8c3e72
36 changed files with 2911 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

183
oval/c10f1/ALT-PU-2024-1988/definitions.json Normal file
View File

@ -0,0 +1,183 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20241988",
"Version": "oval:org.altlinux.errata:def:20241988",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-1988: package `bind` update to version 9.16.44-alt0.c10.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-1988",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-1988",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-03436",
"RefURL": "https://bdu.fstec.ru/vul/2023-03436",
"Source": "BDU"
},
{
"RefID": "BDU:2023-06079",
"RefURL": "https://bdu.fstec.ru/vul/2023-06079",
"Source": "BDU"
},
{
"RefID": "BDU:2023-07642",
"RefURL": "https://bdu.fstec.ru/vul/2023-07642",
"Source": "BDU"
},
{
"RefID": "CVE-2023-2828",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-2828",
"Source": "CVE"
},
{
"RefID": "CVE-2023-2829",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-2829",
"Source": "CVE"
},
{
"RefID": "CVE-2023-2911",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-2911",
"Source": "CVE"
},
{
"RefID": "CVE-2023-3341",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-3341",
"Source": "CVE"
}
],
"Description": "This update upgrades bind to version 9.16.44-alt0.c10.1. \nSecurity Fix(es):\n\n * BDU:2023-03436: Уязвимость сервера DNS BIND, связанная с переполнением буфера в стеке при работе BIND в качестве «резолвера», позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2023-06079: Уязвимость демона named DNS-сервера BIND, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2023-07642: Уязвимость сервера DNS BIND, связанная с выделением неограниченной памяти, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-2828: Every `named` instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the `max-cache-size` statement in the configuration file; it defaults to 90% of the total amount of memory available on the host. When the size of the cache reaches 7/8 of the configured limit, a cache-cleaning algorithm starts to remove expired and/or least-recently used RRsets from the cache, to keep memory use below the configured limit.\n\nIt has been discovered that the effectiveness of the cache-cleaning algorithm used in `named` can be severely diminished by querying the resolver for specific RRsets in a certain order, effectively allowing the configured `max-cache-size` limit to be significantly exceeded.\nThis issue affects BIND 9 versions 9.11.0 through 9.16.41, 9.18.0 through 9.18.15, 9.19.0 through 9.19.13, 9.11.3-S1 through 9.16.41-S1, and 9.18.11-S1 through 9.18.15-S1.\n\n * CVE-2023-2829: A `named` instance configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Cache (RFC 8198) option (`synth-from-dnssec`) enabled can be remotely terminated using a zone with a malformed NSEC record.\nThis issue affects BIND 9 versions 9.16.8-S1 through 9.16.41-S1 and 9.18.11-S1 through 9.18.15-S1.\n\n * CVE-2023-2911: If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-answer-client-timeout 0;`, a sequence of serve-stale-related lookups could cause `named` to loop and terminate unexpectedly due to a stack overflow.\nThis issue affects BIND 9 versions 9.16.33 through 9.16.41, 9.18.7 through 9.18.15, 9.16.33-S1 through 9.16.41-S1, and 9.18.11-S1 through 9.18.15-S1.\n\n * CVE-2023-3341: The code that processes control channel messages sent to `named` calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory, causing `named` to terminate unexpectedly. Since each incoming control channel message is fully parsed before its contents are authenticated, exploiting this flaw does not require the attacker to hold a valid RNDC key; only network access to the control channel's configured TCP port is necessary.\nThis issue affects BIND 9 versions 9.2.0 through 9.16.43, 9.18.0 through 9.18.18, 9.19.0 through 9.19.16, 9.9.3-S1 through 9.16.43-S1, and 9.18.0-S1 through 9.18.18-S1.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": [
{
"Cvss": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-121",
"Href": "https://bdu.fstec.ru/vul/2023-03436",
"Impact": "High",
"Public": "20230621",
"CveID": "BDU:2023-03436"
},
{
"Cvss": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-674, CWE-787",
"Href": "https://bdu.fstec.ru/vul/2023-06079",
"Impact": "High",
"Public": "20230620",
"CveID": "BDU:2023-06079"
},
{
"Cvss": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-770",
"Href": "https://bdu.fstec.ru/vul/2023-07642",
"Impact": "High",
"Public": "20230614",
"CveID": "BDU:2023-07642"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-770",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-2828",
"Impact": "High",
"Public": "20230621",
"CveID": "CVE-2023-2828"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-2829",
"Impact": "High",
"Public": "20230621",
"CveID": "CVE-2023-2829"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-787",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-2911",
"Impact": "High",
"Public": "20230621",
"CveID": "CVE-2023-2911"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-787",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-3341",
"Impact": "High",
"Public": "20230920",
"CveID": "CVE-2023-3341"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20241988001",
"Comment": "bind is earlier than 0:9.16.44-alt0.c10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241988002",
"Comment": "bind-devel is earlier than 0:9.16.44-alt0.c10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241988003",
"Comment": "bind-doc is earlier than 0:9.16.44-alt0.c10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241988004",
"Comment": "bind-utils is earlier than 0:9.16.44-alt0.c10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241988005",
"Comment": "libbind is earlier than 0:9.16.44-alt0.c10.1"
}
]
}
]
}
}
]
}

58
oval/c10f1/ALT-PU-2024-1988/objects.json Normal file
View File

@ -0,0 +1,58 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20241988001",
"Version": "1",
"comment": "bind is installed",
"Name": "bind"
},
{
"ID": "oval:org.altlinux.errata:obj:20241988002",
"Version": "1",
"comment": "bind-devel is installed",
"Name": "bind-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20241988003",
"Version": "1",
"comment": "bind-doc is installed",
"Name": "bind-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:20241988004",
"Version": "1",
"comment": "bind-utils is installed",
"Name": "bind-utils"
},
{
"ID": "oval:org.altlinux.errata:obj:20241988005",
"Version": "1",
"comment": "libbind is installed",
"Name": "libbind"
}
]
}

23
oval/c10f1/ALT-PU-2024-1988/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20241988001",
"Version": "1",
"Comment": "package EVR is earlier than 0:9.16.44-alt0.c10.1",
"Arch": {},
"Evr": {
"Text": "0:9.16.44-alt0.c10.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

78
oval/c10f1/ALT-PU-2024-1988/tests.json Normal file
View File

@ -0,0 +1,78 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20241988001",
"Version": "1",
"Check": "all",
"Comment": "bind is earlier than 0:9.16.44-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241988001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241988001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241988002",
"Version": "1",
"Check": "all",
"Comment": "bind-devel is earlier than 0:9.16.44-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241988002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241988001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241988003",
"Version": "1",
"Check": "all",
"Comment": "bind-doc is earlier than 0:9.16.44-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241988003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241988001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241988004",
"Version": "1",
"Check": "all",
"Comment": "bind-utils is earlier than 0:9.16.44-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241988004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241988001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241988005",
"Version": "1",
"Check": "all",
"Comment": "libbind is earlier than 0:9.16.44-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241988005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241988001"
}
}
]
}

138
oval/c10f1/ALT-PU-2024-2051/definitions.json Normal file
View File

@ -0,0 +1,138 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20242051",
"Version": "oval:org.altlinux.errata:def:20242051",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-2051: package `libde265` update to version 1.0.15-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-2051",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-2051",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02130",
"RefURL": "https://bdu.fstec.ru/vul/2023-02130",
"Source": "BDU"
},
{
"RefID": "BDU:2023-02131",
"RefURL": "https://bdu.fstec.ru/vul/2023-02131",
"Source": "BDU"
},
{
"RefID": "CVE-2023-27102",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-27102",
"Source": "CVE"
},
{
"RefID": "CVE-2023-27103",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-27103",
"Source": "CVE"
}
],
"Description": "This update upgrades libde265 to version 1.0.15-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02130: Уязвимость функции derive_collocated_motion_vectors (motion.cc) реализации видеокодека h.265 Libde265, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации\n\n * BDU:2023-02131: Уязвимость функции decoder_context::p rocess_slice_segment_header (decctx.cc) реализации видеокодека h.265 Libde265, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации\n\n * CVE-2023-27102: Libde265 v1.0.11 was discovered to contain a segmentation violation via the function decoder_context::process_slice_segment_header at decctx.cc.\n\n * CVE-2023-27103: Libde265 v1.0.11 was discovered to contain a heap buffer overflow via the function derive_collocated_motion_vectors at motion.cc.\n\n * #47544: v1.0.12 (security fixes)",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": [
{
"Cvss": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"Cwe": "CWE-787",
"Href": "https://bdu.fstec.ru/vul/2023-02130",
"Impact": "High",
"Public": "20230315",
"CveID": "BDU:2023-02130"
},
{
"Cvss": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"Cwe": "CWE-476",
"Href": "https://bdu.fstec.ru/vul/2023-02131",
"Impact": "Low",
"Public": "20230315",
"CveID": "BDU:2023-02131"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"Cwe": "CWE-476",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-27102",
"Impact": "Low",
"Public": "20230315",
"CveID": "CVE-2023-27102"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"Cwe": "CWE-787",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-27103",
"Impact": "High",
"Public": "20230315",
"CveID": "CVE-2023-27103"
}
],
"Bugzilla": [
{
"Id": "47544",
"Href": "https://bugzilla.altlinux.org/47544",
"Data": "v1.0.12 (security fixes)"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20242051001",
"Comment": "libde265 is earlier than 0:1.0.15-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242051002",
"Comment": "libde265-devel is earlier than 0:1.0.15-alt1"
}
]
}
]
}
}
]
}

40
oval/c10f1/ALT-PU-2024-2051/objects.json Normal file
View File

@ -0,0 +1,40 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20242051001",
"Version": "1",
"comment": "libde265 is installed",
"Name": "libde265"
},
{
"ID": "oval:org.altlinux.errata:obj:20242051002",
"Version": "1",
"comment": "libde265-devel is installed",
"Name": "libde265-devel"
}
]
}

23
oval/c10f1/ALT-PU-2024-2051/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20242051001",
"Version": "1",
"Comment": "package EVR is earlier than 0:1.0.15-alt1",
"Arch": {},
"Evr": {
"Text": "0:1.0.15-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

42
oval/c10f1/ALT-PU-2024-2051/tests.json Normal file
View File

@ -0,0 +1,42 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20242051001",
"Version": "1",
"Check": "all",
"Comment": "libde265 is earlier than 0:1.0.15-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242051001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242051001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242051002",
"Version": "1",
"Check": "all",
"Comment": "libde265-devel is earlier than 0:1.0.15-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242051002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242051001"
}
}
]
}

129
oval/c10f2/ALT-PU-2024-1712/definitions.json Normal file
View File

@ -0,0 +1,129 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20241712",
"Version": "oval:org.altlinux.errata:def:20241712",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-1712: package `poppler-current` update to version 23.08.0-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f2"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-1712",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-1712",
"Source": "ALTPU"
},
{
"RefID": "CVE-2023-34872",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-34872",
"Source": "CVE"
}
],
"Description": "This update upgrades poppler-current to version 23.08.0-alt1. \nSecurity Fix(es):\n\n * CVE-2023-34872: A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": null,
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"Cwe": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-34872",
"Impact": "Low",
"Public": "20230731",
"CveID": "CVE-2023-34872"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:5001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20241712001",
"Comment": "libpoppler-cpp-devel is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712002",
"Comment": "libpoppler-devel is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712003",
"Comment": "libpoppler-gir is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712004",
"Comment": "libpoppler-gir-devel is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712005",
"Comment": "libpoppler-glib-devel is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712006",
"Comment": "libpoppler-qt5-devel is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712007",
"Comment": "libpoppler-qt6-devel is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712008",
"Comment": "libpoppler0-cpp is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712009",
"Comment": "libpoppler1-qt5 is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712010",
"Comment": "libpoppler130 is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712011",
"Comment": "libpoppler3-qt6 is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712012",
"Comment": "libpoppler8-glib is earlier than 0:23.08.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241712013",
"Comment": "poppler is earlier than 0:23.08.0-alt1"
}
]
}
]
}
}
]
}

106
oval/c10f2/ALT-PU-2024-1712/objects.json Normal file
View File

@ -0,0 +1,106 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:5001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20241712001",
"Version": "1",
"comment": "libpoppler-cpp-devel is installed",
"Name": "libpoppler-cpp-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712002",
"Version": "1",
"comment": "libpoppler-devel is installed",
"Name": "libpoppler-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712003",
"Version": "1",
"comment": "libpoppler-gir is installed",
"Name": "libpoppler-gir"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712004",
"Version": "1",
"comment": "libpoppler-gir-devel is installed",
"Name": "libpoppler-gir-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712005",
"Version": "1",
"comment": "libpoppler-glib-devel is installed",
"Name": "libpoppler-glib-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712006",
"Version": "1",
"comment": "libpoppler-qt5-devel is installed",
"Name": "libpoppler-qt5-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712007",
"Version": "1",
"comment": "libpoppler-qt6-devel is installed",
"Name": "libpoppler-qt6-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712008",
"Version": "1",
"comment": "libpoppler0-cpp is installed",
"Name": "libpoppler0-cpp"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712009",
"Version": "1",
"comment": "libpoppler1-qt5 is installed",
"Name": "libpoppler1-qt5"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712010",
"Version": "1",
"comment": "libpoppler130 is installed",
"Name": "libpoppler130"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712011",
"Version": "1",
"comment": "libpoppler3-qt6 is installed",
"Name": "libpoppler3-qt6"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712012",
"Version": "1",
"comment": "libpoppler8-glib is installed",
"Name": "libpoppler8-glib"
},
{
"ID": "oval:org.altlinux.errata:obj:20241712013",
"Version": "1",
"comment": "poppler is installed",
"Name": "poppler"
}
]
}

23
oval/c10f2/ALT-PU-2024-1712/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:5001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20241712001",
"Version": "1",
"Comment": "package EVR is earlier than 0:23.08.0-alt1",
"Arch": {},
"Evr": {
"Text": "0:23.08.0-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

174
oval/c10f2/ALT-PU-2024-1712/tests.json Normal file
View File

@ -0,0 +1,174 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:5001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f2' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:5001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:5001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20241712001",
"Version": "1",
"Check": "all",
"Comment": "libpoppler-cpp-devel is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712002",
"Version": "1",
"Check": "all",
"Comment": "libpoppler-devel is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712003",
"Version": "1",
"Check": "all",
"Comment": "libpoppler-gir is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712004",
"Version": "1",
"Check": "all",
"Comment": "libpoppler-gir-devel is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712005",
"Version": "1",
"Check": "all",
"Comment": "libpoppler-glib-devel is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712006",
"Version": "1",
"Check": "all",
"Comment": "libpoppler-qt5-devel is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712007",
"Version": "1",
"Check": "all",
"Comment": "libpoppler-qt6-devel is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712008",
"Version": "1",
"Check": "all",
"Comment": "libpoppler0-cpp is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712009",
"Version": "1",
"Check": "all",
"Comment": "libpoppler1-qt5 is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712010",
"Version": "1",
"Check": "all",
"Comment": "libpoppler130 is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712011",
"Version": "1",
"Check": "all",
"Comment": "libpoppler3-qt6 is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712012",
"Version": "1",
"Check": "all",
"Comment": "libpoppler8-glib is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241712013",
"Version": "1",
"Check": "all",
"Comment": "poppler is earlier than 0:23.08.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241712013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241712001"
}
}
]
}

137
oval/p10/ALT-PU-2024-1259/definitions.json Normal file
View File

@ -0,0 +1,137 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20241259",
"Version": "oval:org.altlinux.errata:def:20241259",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-1259: package `ghostscript` update to version 10.01.1-alt2",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-1259",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-1259",
"Source": "ALTPU"
}
],
"Description": "This update upgrades ghostscript to version 10.01.1-alt2. \nSecurity Fix(es):\n\n * #46986: Артефакты генерации postscript, отсутствие текста на тестовой странице CUPS",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": null,
"Bugzilla": [
{
"Id": "46986",
"Href": "https://bugzilla.altlinux.org/46986",
"Data": "Артефакты генерации postscript, отсутствие текста на тестовой странице CUPS"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20241259001",
"Comment": "ghostscript is earlier than 0:10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259002",
"Comment": "ghostscript-classic is earlier than 0:10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259003",
"Comment": "ghostscript-common is earlier than 0:10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259004",
"Comment": "ghostscript-gtk is earlier than 0:10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259005",
"Comment": "ghostscript-module-X is earlier than 0:10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259006",
"Comment": "ghostscript-utils is earlier than 0:10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259007",
"Comment": "libgs is earlier than 0:10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259008",
"Comment": "libgs-devel is earlier than 0:10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259009",
"Comment": "libijs is earlier than 0:0.35_10.01.1-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241259010",
"Comment": "libijs-devel is earlier than 0:10.01.1-alt2"
}
]
}
]
}
}
]
}

88
oval/p10/ALT-PU-2024-1259/objects.json Normal file
View File

@ -0,0 +1,88 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20241259001",
"Version": "1",
"comment": "ghostscript is installed",
"Name": "ghostscript"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259002",
"Version": "1",
"comment": "ghostscript-classic is installed",
"Name": "ghostscript-classic"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259003",
"Version": "1",
"comment": "ghostscript-common is installed",
"Name": "ghostscript-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259004",
"Version": "1",
"comment": "ghostscript-gtk is installed",
"Name": "ghostscript-gtk"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259005",
"Version": "1",
"comment": "ghostscript-module-X is installed",
"Name": "ghostscript-module-X"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259006",
"Version": "1",
"comment": "ghostscript-utils is installed",
"Name": "ghostscript-utils"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259007",
"Version": "1",
"comment": "libgs is installed",
"Name": "libgs"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259008",
"Version": "1",
"comment": "libgs-devel is installed",
"Name": "libgs-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259009",
"Version": "1",
"comment": "libijs is installed",
"Name": "libijs"
},
{
"ID": "oval:org.altlinux.errata:obj:20241259010",
"Version": "1",
"comment": "libijs-devel is installed",
"Name": "libijs-devel"
}
]
}

35
oval/p10/ALT-PU-2024-1259/states.json Normal file
View File

@ -0,0 +1,35 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20241259001",
"Version": "1",
"Comment": "package EVR is earlier than 0:10.01.1-alt2",
"Arch": {},
"Evr": {
"Text": "0:10.01.1-alt2",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
},
{
"ID": "oval:org.altlinux.errata:ste:20241259002",
"Version": "1",
"Comment": "package EVR is earlier than 0:0.35_10.01.1-alt2",
"Arch": {},
"Evr": {
"Text": "0:0.35_10.01.1-alt2",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

138
oval/p10/ALT-PU-2024-1259/tests.json Normal file
View File

@ -0,0 +1,138 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20241259001",
"Version": "1",
"Check": "all",
"Comment": "ghostscript is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259002",
"Version": "1",
"Check": "all",
"Comment": "ghostscript-classic is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259003",
"Version": "1",
"Check": "all",
"Comment": "ghostscript-common is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259004",
"Version": "1",
"Check": "all",
"Comment": "ghostscript-gtk is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259005",
"Version": "1",
"Check": "all",
"Comment": "ghostscript-module-X is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259006",
"Version": "1",
"Check": "all",
"Comment": "ghostscript-utils is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259007",
"Version": "1",
"Check": "all",
"Comment": "libgs is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259008",
"Version": "1",
"Check": "all",
"Comment": "libgs-devel is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259009",
"Version": "1",
"Check": "all",
"Comment": "libijs is earlier than 0:0.35_10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259002"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241259010",
"Version": "1",
"Check": "all",
"Comment": "libijs-devel is earlier than 0:10.01.1-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241259010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241259001"
}
}
]
}

220
oval/p10/ALT-PU-2024-1575/definitions.json Normal file
View File

@ -0,0 +1,220 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20241575",
"Version": "oval:org.altlinux.errata:def:20241575",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-1575: package `openstack-neutron` update to version 22.1.0-alt1.p10",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-1575",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-1575",
"Source": "ALTPU"
},
{
"RefID": "BDU:2021-04649",
"RefURL": "https://bdu.fstec.ru/vul/2021-04649",
"Source": "BDU"
},
{
"RefID": "CVE-2021-20267",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-20267",
"Source": "CVE"
},
{
"RefID": "CVE-2021-38598",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-38598",
"Source": "CVE"
},
{
"RefID": "CVE-2021-40085",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-40085",
"Source": "CVE"
},
{
"RefID": "CVE-2021-40797",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-40797",
"Source": "CVE"
},
{
"RefID": "CVE-2022-3277",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2022-3277",
"Source": "CVE"
}
],
"Description": "This update upgrades openstack-neutron to version 22.1.0-alt1.p10. \nSecurity Fix(es):\n\n * BDU:2021-04649: Уязвимость правил брандмауэра Open vSwitch сетевого сервиса Neutron, связанная с недостаточной проверкой подлинности данных, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании\n\n * CVE-2021-20267: A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersonate the IPv6 addresses of other systems on the network, resulting in denial of service or in some cases possibly interception of traffic intended for other destinations. Only deployments using the Open vSwitch driver are affected. Source: OpenStack project. Versions before openstack-neutron 15.3.3, openstack-neutron 16.3.1 and openstack-neutron 17.1.1 are affected.\n\n * CVE-2021-38598: OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersonate the hardware addresses of other systems on the network, resulting in denial of service or in some cases possibly interception of traffic intended for other destinations.\n\n * CVE-2021-40085: An issue was discovered in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. Authenticated attackers can reconfigure dnsmasq via a crafted extra_dhcp_opts value.\n\n * CVE-2021-40797: An issue was discovered in the routes middleware in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. By making API requests involving nonexistent controllers, an authenticated user may cause the API worker to consume increasing amounts of memory, resulting in API performance degradation or denial of service.\n\n * CVE-2022-3277: An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": [
{
"Cvss": "AV:N/AC:L/Au:S/C:P/I:N/A:P",
"Cvss3": "AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"Cwe": "CWE-345",
"Href": "https://bdu.fstec.ru/vul/2021-04649",
"Impact": "High",
"Public": "20201104",
"CveID": "BDU:2021-04649"
}
],
"Cves": [
{
"Cvss": "AV:N/AC:L/Au:S/C:P/I:N/A:P",
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"Cwe": "CWE-345",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-20267",
"Impact": "High",
"Public": "20210528",
"CveID": "CVE-2021-20267"
},
{
"Cvss": "AV:N/AC:M/Au:N/C:N/I:P/A:P",
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"Cwe": "CWE-290",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-38598",
"Impact": "Critical",
"Public": "20210823",
"CveID": "CVE-2021-38598"
},
{
"Cvss": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"Cwe": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-40085",
"Impact": "Low",
"Public": "20210831",
"CveID": "CVE-2021-40085"
},
{
"Cvss": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-772",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-40797",
"Impact": "Low",
"Public": "20210908",
"CveID": "CVE-2021-40797"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-400",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2022-3277",
"Impact": "Low",
"Public": "20230306",
"CveID": "CVE-2022-3277"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20241575001",
"Comment": "openstack-neutron is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575002",
"Comment": "openstack-neutron-dhcp-agent is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575003",
"Comment": "openstack-neutron-l3-agent is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575004",
"Comment": "openstack-neutron-linuxbridge-agent is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575005",
"Comment": "openstack-neutron-macvtap-agent is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575006",
"Comment": "openstack-neutron-metadata-agent is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575007",
"Comment": "openstack-neutron-metering-agent is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575008",
"Comment": "openstack-neutron-openvswitch-agent is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575009",
"Comment": "openstack-neutron-server is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575010",
"Comment": "openstack-neutron-sriov-nic-agent is earlier than 1:22.1.0-alt1.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20241575011",
"Comment": "python3-module-neutron is earlier than 1:22.1.0-alt1.p10"
}
]
}
]
}
}
]
}

94
oval/p10/ALT-PU-2024-1575/objects.json Normal file
View File

@ -0,0 +1,94 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20241575001",
"Version": "1",
"comment": "openstack-neutron is installed",
"Name": "openstack-neutron"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575002",
"Version": "1",
"comment": "openstack-neutron-dhcp-agent is installed",
"Name": "openstack-neutron-dhcp-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575003",
"Version": "1",
"comment": "openstack-neutron-l3-agent is installed",
"Name": "openstack-neutron-l3-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575004",
"Version": "1",
"comment": "openstack-neutron-linuxbridge-agent is installed",
"Name": "openstack-neutron-linuxbridge-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575005",
"Version": "1",
"comment": "openstack-neutron-macvtap-agent is installed",
"Name": "openstack-neutron-macvtap-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575006",
"Version": "1",
"comment": "openstack-neutron-metadata-agent is installed",
"Name": "openstack-neutron-metadata-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575007",
"Version": "1",
"comment": "openstack-neutron-metering-agent is installed",
"Name": "openstack-neutron-metering-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575008",
"Version": "1",
"comment": "openstack-neutron-openvswitch-agent is installed",
"Name": "openstack-neutron-openvswitch-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575009",
"Version": "1",
"comment": "openstack-neutron-server is installed",
"Name": "openstack-neutron-server"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575010",
"Version": "1",
"comment": "openstack-neutron-sriov-nic-agent is installed",
"Name": "openstack-neutron-sriov-nic-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20241575011",
"Version": "1",
"comment": "python3-module-neutron is installed",
"Name": "python3-module-neutron"
}
]
}

23
oval/p10/ALT-PU-2024-1575/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20241575001",
"Version": "1",
"Comment": "package EVR is earlier than 1:22.1.0-alt1.p10",
"Arch": {},
"Evr": {
"Text": "1:22.1.0-alt1.p10",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

150
oval/p10/ALT-PU-2024-1575/tests.json Normal file
View File

@ -0,0 +1,150 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20241575001",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575002",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-dhcp-agent is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575003",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-l3-agent is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575004",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-linuxbridge-agent is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575005",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-macvtap-agent is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575006",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-metadata-agent is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575007",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-metering-agent is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575008",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-openvswitch-agent is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575009",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-server is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575010",
"Version": "1",
"Check": "all",
"Comment": "openstack-neutron-sriov-nic-agent is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20241575011",
"Version": "1",
"Check": "all",
"Comment": "python3-module-neutron is earlier than 1:22.1.0-alt1.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241575011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241575001"
}
}
]
}

101
oval/p10/ALT-PU-2024-1851/definitions.json Normal file
View File

@ -0,0 +1,101 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20241851",
"Version": "oval:org.altlinux.errata:def:20241851",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-1851: package `kde5-zanshin` update to version 23.08.4-alt3",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-1851",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-1851",
"Source": "ALTPU"
}
],
"Description": "This update upgrades kde5-zanshin to version 23.08.4-alt3. \nSecurity Fix(es):\n\n * #48928: Не работает смена языка интерфейса в kde5-zanshin",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": null,
"Bugzilla": [
{
"Id": "48928",
"Href": "https://bugzilla.altlinux.org/48928",
"Data": "Не работает смена языка интерфейса в kde5-zanshin"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20241851001",
"Comment": "kde5-zanshin is earlier than 0:23.08.4-alt3"
}
]
}
]
}
}
]
}

34
oval/p10/ALT-PU-2024-1851/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20241851001",
"Version": "1",
"comment": "kde5-zanshin is installed",
"Name": "kde5-zanshin"
}
]
}

23
oval/p10/ALT-PU-2024-1851/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20241851001",
"Version": "1",
"Comment": "package EVR is earlier than 0:23.08.4-alt3",
"Arch": {},
"Evr": {
"Text": "0:23.08.4-alt3",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/p10/ALT-PU-2024-1851/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20241851001",
"Version": "1",
"Check": "all",
"Comment": "kde5-zanshin is earlier than 0:23.08.4-alt3",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20241851001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20241851001"
}
}
]
}

128
oval/p10/ALT-PU-2024-2024/definitions.json Normal file
View File

@ -0,0 +1,128 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20242024",
"Version": "oval:org.altlinux.errata:def:20242024",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-2024: package `apache2-mod_wsgi` update to version 4.9.4-alt0.p10.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-2024",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-2024",
"Source": "ALTPU"
},
{
"RefID": "BDU:2022-05209",
"RefURL": "https://bdu.fstec.ru/vul/2022-05209",
"Source": "BDU"
},
{
"RefID": "CVE-2022-2255",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2022-2255",
"Source": "CVE"
}
],
"Description": "This update upgrades apache2-mod_wsgi to version 4.9.4-alt0.p10.1. \nSecurity Fix(es):\n\n * BDU:2022-05209: Уязвимость модуля mod_wsgi веб-сервера Apache, связанная с ошибками при обработке заголовока X-Client-IP, позволяющая нарушителю получить несанкционированный доступ к сетевым службам\n\n * CVE-2022-2255: A vulnerability was found in mod_wsgi. The X-Client-IP header is not removed from a request from an untrusted proxy, allowing an attacker to pass the X-Client-IP header to the target WSGI application because the condition to remove it is missing.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": [
{
"Cvss": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"Cvss3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"Cwe": "CWE-348",
"Href": "https://bdu.fstec.ru/vul/2022-05209",
"Impact": "Low",
"Public": "20220718",
"CveID": "BDU:2022-05209"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"Cwe": "CWE-345",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2022-2255",
"Impact": "High",
"Public": "20220825",
"CveID": "CVE-2022-2255"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20242024001",
"Comment": "apache2-mod_wsgi is earlier than 0:4.9.4-alt0.p10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242024002",
"Comment": "apache2-mod_wsgi-py3 is earlier than 0:4.9.4-alt0.p10.1"
}
]
}
]
}
}
]
}

40
oval/p10/ALT-PU-2024-2024/objects.json Normal file
View File

@ -0,0 +1,40 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20242024001",
"Version": "1",
"comment": "apache2-mod_wsgi is installed",
"Name": "apache2-mod_wsgi"
},
{
"ID": "oval:org.altlinux.errata:obj:20242024002",
"Version": "1",
"comment": "apache2-mod_wsgi-py3 is installed",
"Name": "apache2-mod_wsgi-py3"
}
]
}

23
oval/p10/ALT-PU-2024-2024/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20242024001",
"Version": "1",
"Comment": "package EVR is earlier than 0:4.9.4-alt0.p10.1",
"Arch": {},
"Evr": {
"Text": "0:4.9.4-alt0.p10.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

42
oval/p10/ALT-PU-2024-2024/tests.json Normal file
View File

@ -0,0 +1,42 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20242024001",
"Version": "1",
"Check": "all",
"Comment": "apache2-mod_wsgi is earlier than 0:4.9.4-alt0.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242024001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242024001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242024002",
"Version": "1",
"Check": "all",
"Comment": "apache2-mod_wsgi-py3 is earlier than 0:4.9.4-alt0.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242024002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242024001"
}
}
]
}

109
oval/p10/ALT-PU-2024-2036/definitions.json Normal file
View File

@ -0,0 +1,109 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20242036",
"Version": "oval:org.altlinux.errata:def:20242036",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-2036: package `kde5-ark` update to version 23.08.4-alt2",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-2036",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-2036",
"Source": "ALTPU"
}
],
"Description": "This update upgrades kde5-ark to version 23.08.4-alt2. \nSecurity Fix(es):\n\n * #49339: Удалить модуль Info-zip из-за проблем с кодировками",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": null,
"Bugzilla": [
{
"Id": "49339",
"Href": "https://bugzilla.altlinux.org/49339",
"Data": "Удалить модуль Info-zip из-за проблем с кодировками"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20242036001",
"Comment": "kde5-ark is earlier than 0:23.08.4-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242036002",
"Comment": "kde5-ark-common is earlier than 0:23.08.4-alt2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242036003",
"Comment": "libkerfuffle23 is earlier than 0:23.08.4-alt2"
}
]
}
]
}
}
]
}

46
oval/p10/ALT-PU-2024-2036/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20242036001",
"Version": "1",
"comment": "kde5-ark is installed",
"Name": "kde5-ark"
},
{
"ID": "oval:org.altlinux.errata:obj:20242036002",
"Version": "1",
"comment": "kde5-ark-common is installed",
"Name": "kde5-ark-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20242036003",
"Version": "1",
"comment": "libkerfuffle23 is installed",
"Name": "libkerfuffle23"
}
]
}

23
oval/p10/ALT-PU-2024-2036/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20242036001",
"Version": "1",
"Comment": "package EVR is earlier than 0:23.08.4-alt2",
"Arch": {},
"Evr": {
"Text": "0:23.08.4-alt2",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/p10/ALT-PU-2024-2036/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20242036001",
"Version": "1",
"Check": "all",
"Comment": "kde5-ark is earlier than 0:23.08.4-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242036001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242036001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242036002",
"Version": "1",
"Check": "all",
"Comment": "kde5-ark-common is earlier than 0:23.08.4-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242036002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242036001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242036003",
"Version": "1",
"Check": "all",
"Comment": "libkerfuffle23 is earlier than 0:23.08.4-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242036003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242036001"
}
}
]
}

269
oval/p10/ALT-PU-2024-2047/definitions.json Normal file
View File

@ -0,0 +1,269 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20242047",
"Version": "oval:org.altlinux.errata:def:20242047",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-2047: package `frr` update to version 9.0.2-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-2047",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-2047",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-05649",
"RefURL": "https://bdu.fstec.ru/vul/2023-05649",
"Source": "BDU"
},
{
"RefID": "BDU:2023-08243",
"RefURL": "https://bdu.fstec.ru/vul/2023-08243",
"Source": "BDU"
},
{
"RefID": "BDU:2023-08631",
"RefURL": "https://bdu.fstec.ru/vul/2023-08631",
"Source": "BDU"
},
{
"RefID": "CVE-2023-38802",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-38802",
"Source": "CVE"
},
{
"RefID": "CVE-2023-41358",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-41358",
"Source": "CVE"
},
{
"RefID": "CVE-2023-41359",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-41359",
"Source": "CVE"
},
{
"RefID": "CVE-2023-41360",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-41360",
"Source": "CVE"
},
{
"RefID": "CVE-2023-41361",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-41361",
"Source": "CVE"
},
{
"RefID": "CVE-2023-41909",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-41909",
"Source": "CVE"
},
{
"RefID": "CVE-2023-46752",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-46752",
"Source": "CVE"
},
{
"RefID": "CVE-2023-46753",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-46753",
"Source": "CVE"
},
{
"RefID": "CVE-2023-47234",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-47234",
"Source": "CVE"
},
{
"RefID": "CVE-2023-47235",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-47235",
"Source": "CVE"
}
],
"Description": "This update upgrades frr to version 9.0.2-alt1. \nSecurity Fix(es):\n\n * BDU:2023-05649: Уязвимость программного средства реализации сетевой маршрутизации на Unix-подобных системах FRRouting, сетевой операционной системы Picos, операционной системы PAN-OS, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2023-08243: Уязвимость программного средства реализации сетевой маршрутизации на Unix-подобных системах FRRouting, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2023-08631: Уязвимость программного средства реализации сетевой маршрутизации на Unix-подобных системах FRRouting, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-38802: FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted attribute 23 (Tunnel Encapsulation).\n\n * CVE-2023-41358: An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c processes NLRIs if the attribute length is zero.\n\n * CVE-2023-41359: An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgp_attr_aigp_valid in bgpd/bgp_attr.c because there is no check for the availability of two bytes during AIGP validation.\n\n * CVE-2023-41360: An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c can read the initial byte of the ORF header in an ahead-of-stream situation.\n\n * CVE-2023-41361: An issue was discovered in FRRouting FRR 9.0. bgpd/bgp_open.c does not check for an overly large length of the rcv software version.\n\n * CVE-2023-41909: An issue was discovered in FRRouting FRR through 9.0. bgp_nlri_parse_flowspec in bgpd/bgp_flowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference.\n\n * CVE-2023-46752: An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash.\n\n * CVE-2023-46753: An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP UPDATE message without mandatory attributes, e.g., one with only an unknown transit attribute.\n\n * CVE-2023-47234: An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a crafted BGP UPDATE message with a MP_UNREACH_NLRI attribute and additional NLRI data (that lacks mandatory path attributes).\n\n * CVE-2023-47235: An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the presence of EOR does not lead to a treat-as-withdraw outcome.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2023 BaseALT Ltd.",
"Issued": {
"Date": "2024-02-13"
},
"Updated": {
"Date": "2024-02-13"
},
"bdu": [
{
"Cvss": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-354",
"Href": "https://bdu.fstec.ru/vul/2023-05649",
"Impact": "High",
"Public": "20230829",
"CveID": "BDU:2023-05649"
},
{
"Cvss": "AV:N/AC:H/Au:N/C:N/I:N/A:C",
"Cvss3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-20",
"Href": "https://bdu.fstec.ru/vul/2023-08243",
"Impact": "Low",
"Public": "20231026",
"CveID": "BDU:2023-08243"
},
{
"Cvss": "AV:N/AC:H/Au:N/C:N/I:N/A:C",
"Cvss3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-400",
"Href": "https://bdu.fstec.ru/vul/2023-08631",
"Impact": "Low",
"Public": "20231026",
"CveID": "BDU:2023-08631"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-354",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-38802",
"Impact": "High",
"Public": "20230829",
"CveID": "CVE-2023-38802"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-476",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-41358",
"Impact": "High",
"Public": "20230829",
"CveID": "CVE-2023-41358"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"Cwe": "CWE-125",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-41359",
"Impact": "Critical",
"Public": "20230829",
"CveID": "CVE-2023-41359"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"Cwe": "CWE-125",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-41360",
"Impact": "Critical",
"Public": "20230829",
"CveID": "CVE-2023-41360"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-120",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-41361",
"Impact": "Critical",
"Public": "20230829",
"CveID": "CVE-2023-41361"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-476",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-41909",
"Impact": "High",
"Public": "20230905",
"CveID": "CVE-2023-41909"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "NVD-CWE-Other",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-46752",
"Impact": "Low",
"Public": "20231026",
"CveID": "CVE-2023-46752"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "NVD-CWE-Other",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-46753",
"Impact": "Low",
"Public": "20231026",
"CveID": "CVE-2023-46753"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-47234",
"Impact": "High",
"Public": "20231103",
"CveID": "CVE-2023-47234"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-47235",
"Impact": "High",
"Public": "20231103",
"CveID": "CVE-2023-47235"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20242047001",
"Comment": "frr is earlier than 0:9.0.2-alt1"
}
]
}
]
}
}
]
}

34
oval/p10/ALT-PU-2024-2047/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20242047001",
"Version": "1",
"comment": "frr is installed",
"Name": "frr"
}
]
}

23
oval/p10/ALT-PU-2024-2047/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20242047001",
"Version": "1",
"Comment": "package EVR is earlier than 0:9.0.2-alt1",
"Arch": {},
"Evr": {
"Text": "0:9.0.2-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/p10/ALT-PU-2024-2047/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20242047001",
"Version": "1",
"Check": "all",
"Comment": "frr is earlier than 0:9.0.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242047001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242047001"
}
}
]
}