pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ALT Vulnerability

Browse Source
This commit is contained in:
Иван Пепеляев 2024-12-12 03:06:04 +00:00
parent 96aceaf616
commit 37780a05e7
41 changed files with 3173 additions and 26 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
oval/c10f1/ALT-PU-2014-1407/definitions.json
View File

@ -399,10 +399,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/c10f1/ALT-PU-2014-1408/definitions.json
View File

@ -334,10 +334,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/c10f1/ALT-PU-2014-1411/definitions.json
View File

@ -394,10 +394,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

444
oval/c10f1/ALT-PU-2024-16638/definitions.json Normal file
View File

File diff suppressed because one or more lines are too long

208
oval/c10f1/ALT-PU-2024-16638/objects.json Normal file
View File

@ -0,0 +1,208 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202416638001",
"Version": "1",
"Comment": "zabbix-agent is installed",
"Name": "zabbix-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638002",
"Version": "1",
"Comment": "zabbix-agent-sudo is installed",
"Name": "zabbix-agent-sudo"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638003",
"Version": "1",
"Comment": "zabbix-agent2 is installed",
"Name": "zabbix-agent2"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638004",
"Version": "1",
"Comment": "zabbix-common is installed",
"Name": "zabbix-common"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638005",
"Version": "1",
"Comment": "zabbix-common-database-mysql is installed",
"Name": "zabbix-common-database-mysql"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638006",
"Version": "1",
"Comment": "zabbix-common-database-pgsql is installed",
"Name": "zabbix-common-database-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638007",
"Version": "1",
"Comment": "zabbix-common-database-sqlite3 is installed",
"Name": "zabbix-common-database-sqlite3"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638008",
"Version": "1",
"Comment": "zabbix-contrib is installed",
"Name": "zabbix-contrib"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638009",
"Version": "1",
"Comment": "zabbix-doc is installed",
"Name": "zabbix-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638010",
"Version": "1",
"Comment": "zabbix-java-gateway is installed",
"Name": "zabbix-java-gateway"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638011",
"Version": "1",
"Comment": "zabbix-phpfrontend-apache2 is installed",
"Name": "zabbix-phpfrontend-apache2"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638012",
"Version": "1",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.0 is installed",
"Name": "zabbix-phpfrontend-apache2-mod_php8.0"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638013",
"Version": "1",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.1 is installed",
"Name": "zabbix-phpfrontend-apache2-mod_php8.1"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638014",
"Version": "1",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.2 is installed",
"Name": "zabbix-phpfrontend-apache2-mod_php8.2"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638015",
"Version": "1",
"Comment": "zabbix-phpfrontend-engine is installed",
"Name": "zabbix-phpfrontend-engine"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638016",
"Version": "1",
"Comment": "zabbix-phpfrontend-nginx is installed",
"Name": "zabbix-phpfrontend-nginx"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638017",
"Version": "1",
"Comment": "zabbix-phpfrontend-nginx-php8.0-fpm-fcgi is installed",
"Name": "zabbix-phpfrontend-nginx-php8.0-fpm-fcgi"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638018",
"Version": "1",
"Comment": "zabbix-phpfrontend-nginx-php8.1-fpm-fcgi is installed",
"Name": "zabbix-phpfrontend-nginx-php8.1-fpm-fcgi"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638019",
"Version": "1",
"Comment": "zabbix-phpfrontend-nginx-php8.2-fpm-fcgi is installed",
"Name": "zabbix-phpfrontend-nginx-php8.2-fpm-fcgi"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638020",
"Version": "1",
"Comment": "zabbix-phpfrontend-php8.0 is installed",
"Name": "zabbix-phpfrontend-php8.0"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638021",
"Version": "1",
"Comment": "zabbix-phpfrontend-php8.1 is installed",
"Name": "zabbix-phpfrontend-php8.1"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638022",
"Version": "1",
"Comment": "zabbix-phpfrontend-php8.2 is installed",
"Name": "zabbix-phpfrontend-php8.2"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638023",
"Version": "1",
"Comment": "zabbix-proxy is installed",
"Name": "zabbix-proxy"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638024",
"Version": "1",
"Comment": "zabbix-proxy-common is installed",
"Name": "zabbix-proxy-common"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638025",
"Version": "1",
"Comment": "zabbix-proxy-pgsql is installed",
"Name": "zabbix-proxy-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638026",
"Version": "1",
"Comment": "zabbix-server-common is installed",
"Name": "zabbix-server-common"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638027",
"Version": "1",
"Comment": "zabbix-server-mysql is installed",
"Name": "zabbix-server-mysql"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638028",
"Version": "1",
"Comment": "zabbix-server-pgsql is installed",
"Name": "zabbix-server-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638029",
"Version": "1",
"Comment": "zabbix-source is installed",
"Name": "zabbix-source"
},
{
"ID": "oval:org.altlinux.errata:obj:202416638030",
"Version": "1",
"Comment": "zabbix-web-service is installed",
"Name": "zabbix-web-service"
}
]
}

23
oval/c10f1/ALT-PU-2024-16638/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202416638001",
"Version": "1",
"Comment": "package EVR is earlier than 1:7.0.6-alt0.c10f1.1",
"Arch": {},
"EVR": {
"Text": "1:7.0.6-alt0.c10f1.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

378
oval/c10f1/ALT-PU-2024-16638/tests.json Normal file
View File

@ -0,0 +1,378 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202416638001",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638002",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent-sudo is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638003",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent2 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638004",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638005",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-mysql is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638006",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-pgsql is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638007",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-sqlite3 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638008",
"Version": "1",
"Check": "all",
"Comment": "zabbix-contrib is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638009",
"Version": "1",
"Check": "all",
"Comment": "zabbix-doc is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638010",
"Version": "1",
"Check": "all",
"Comment": "zabbix-java-gateway is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638011",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638012",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.0 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638013",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.1 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638014",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.2 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638014"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638015",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-engine is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638015"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638016",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-nginx is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638016"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638017",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-nginx-php8.0-fpm-fcgi is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638017"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638018",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-nginx-php8.1-fpm-fcgi is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638018"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638019",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-nginx-php8.2-fpm-fcgi is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638019"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638020",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-php8.0 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638020"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638021",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-php8.1 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638021"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638022",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-php8.2 is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638022"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638023",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638023"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638024",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy-common is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638024"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638025",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy-pgsql is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638025"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638026",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-common is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638026"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638027",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-mysql is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638027"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638028",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-pgsql is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638028"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638029",
"Version": "1",
"Check": "all",
"Comment": "zabbix-source is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638029"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416638030",
"Version": "1",
"Check": "all",
"Comment": "zabbix-web-service is earlier than 1:7.0.6-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416638030"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416638001"
}
}
]
}

115
oval/c10f1/ALT-PU-2024-16690/definitions.json Normal file
View File

@ -0,0 +1,115 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202416690",
"Version": "oval:org.altlinux.errata:def:202416690",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-16690: package `xalan-j2` update to version 2.7.3-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-16690",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-16690",
"Source": "ALTPU"
},
{
"RefID": "BDU:2022-04788",
"RefURL": "https://bdu.fstec.ru/vul/2022-04788",
"Source": "BDU"
},
{
"RefID": "CVE-2022-34169",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2022-34169",
"Source": "CVE"
}
],
"Description": "This update upgrades xalan-j2 to version 2.7.3-alt1. \nSecurity Fix(es):\n\n * BDU:2022-04788: Уязвимость библиотеки Apache Xalan Java XSLT, связанная с ошибкой приведения целочисленного значения, позволяющая нарушителю выполнить произвольный код\n\n * CVE-2022-34169: The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update to version 2.7.3 or later. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan.\n\n * #52280: Для закрытия CVE-2022-34169 необходимо обновить пакет",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-11"
},
"Updated": {
"Date": "2024-12-11"
},
"BDUs": [
{
"ID": "BDU:2022-04788",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:C/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"CWE": "CWE-192",
"Href": "https://bdu.fstec.ru/vul/2022-04788",
"Impact": "High",
"Public": "20220713"
}
],
"CVEs": [
{
"ID": "CVE-2022-34169",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"CWE": "CWE-681",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2022-34169",
"Impact": "High",
"Public": "20220719"
}
],
"Bugzilla": [
{
"ID": "52280",
"Href": "https://bugzilla.altlinux.org/52280",
"Data": "Для закрытия CVE-2022-34169 необходимо обновить пакет"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202416690001",
"Comment": "xalan-j2 is earlier than 0:2.7.3-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202416690002",
"Comment": "xalan-j2-manual is earlier than 0:2.7.3-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202416690003",
"Comment": "xalan-j2-xsltc is earlier than 0:2.7.3-alt1"
}
]
}
]
}
}
]
}

46
oval/c10f1/ALT-PU-2024-16690/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202416690001",
"Version": "1",
"Comment": "xalan-j2 is installed",
"Name": "xalan-j2"
},
{
"ID": "oval:org.altlinux.errata:obj:202416690002",
"Version": "1",
"Comment": "xalan-j2-manual is installed",
"Name": "xalan-j2-manual"
},
{
"ID": "oval:org.altlinux.errata:obj:202416690003",
"Version": "1",
"Comment": "xalan-j2-xsltc is installed",
"Name": "xalan-j2-xsltc"
}
]
}

23
oval/c10f1/ALT-PU-2024-16690/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202416690001",
"Version": "1",
"Comment": "package EVR is earlier than 0:2.7.3-alt1",
"Arch": {},
"EVR": {
"Text": "0:2.7.3-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/c10f1/ALT-PU-2024-16690/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202416690001",
"Version": "1",
"Check": "all",
"Comment": "xalan-j2 is earlier than 0:2.7.3-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416690001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416690001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416690002",
"Version": "1",
"Check": "all",
"Comment": "xalan-j2-manual is earlier than 0:2.7.3-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416690002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416690001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416690003",
"Version": "1",
"Check": "all",
"Comment": "xalan-j2-xsltc is earlier than 0:2.7.3-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416690003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416690001"
}
}
]
}

103
oval/c10f1/ALT-PU-2024-16692/definitions.json Normal file
View File

@ -0,0 +1,103 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202416692",
"Version": "oval:org.altlinux.errata:def:202416692",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-16692: package `bcel` update to version 6.8.2-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-16692",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-16692",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-02279",
"RefURL": "https://bdu.fstec.ru/vul/2024-02279",
"Source": "BDU"
},
{
"RefID": "CVE-2022-42920",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2022-42920",
"Source": "CVE"
}
],
"Description": "This update upgrades bcel to version 6.8.2-alt1. \nSecurity Fix(es):\n\n * BDU:2024-02279: Уязвимость библиотеки для обработки байт-кода Java Apache Commons BCEL, связанная с записью за границами буфера, позволяющая нарушителю выполнить произвольный код\n\n * CVE-2022-42920: Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications that pass attacker-controllable data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected. Update to Apache Commons BCEL 6.6.0.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-11"
},
"Updated": {
"Date": "2024-12-11"
},
"BDUs": [
{
"ID": "BDU:2024-02279",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-787",
"Href": "https://bdu.fstec.ru/vul/2024-02279",
"Impact": "Critical",
"Public": "20221107"
}
],
"CVEs": [
{
"ID": "CVE-2022-42920",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2022-42920",
"Impact": "Critical",
"Public": "20221107"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202416692001",
"Comment": "bcel is earlier than 1:6.8.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202416692002",
"Comment": "bcel-javadoc is earlier than 1:6.8.2-alt1"
}
]
}
]
}
}
]
}

40
oval/c10f1/ALT-PU-2024-16692/objects.json Normal file
View File

@ -0,0 +1,40 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202416692001",
"Version": "1",
"Comment": "bcel is installed",
"Name": "bcel"
},
{
"ID": "oval:org.altlinux.errata:obj:202416692002",
"Version": "1",
"Comment": "bcel-javadoc is installed",
"Name": "bcel-javadoc"
}
]
}

23
oval/c10f1/ALT-PU-2024-16692/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202416692001",
"Version": "1",
"Comment": "package EVR is earlier than 1:6.8.2-alt1",
"Arch": {},
"EVR": {
"Text": "1:6.8.2-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

42
oval/c10f1/ALT-PU-2024-16692/tests.json Normal file
View File

@ -0,0 +1,42 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202416692001",
"Version": "1",
"Check": "all",
"Comment": "bcel is earlier than 1:6.8.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416692001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416692001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416692002",
"Version": "1",
"Check": "all",
"Comment": "bcel-javadoc is earlier than 1:6.8.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416692002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416692001"
}
}
]
}

183
oval/c10f1/ALT-PU-2024-16693/definitions.json Normal file
View File

File diff suppressed because one or more lines are too long

82
oval/c10f1/ALT-PU-2024-16693/objects.json Normal file
View File

@ -0,0 +1,82 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202416693001",
"Version": "1",
"Comment": "java-11-openjdk is installed",
"Name": "java-11-openjdk"
},
{
"ID": "oval:org.altlinux.errata:obj:202416693002",
"Version": "1",
"Comment": "java-11-openjdk-demo is installed",
"Name": "java-11-openjdk-demo"
},
{
"ID": "oval:org.altlinux.errata:obj:202416693003",
"Version": "1",
"Comment": "java-11-openjdk-devel is installed",
"Name": "java-11-openjdk-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:202416693004",
"Version": "1",
"Comment": "java-11-openjdk-headless is installed",
"Name": "java-11-openjdk-headless"
},
{
"ID": "oval:org.altlinux.errata:obj:202416693005",
"Version": "1",
"Comment": "java-11-openjdk-javadoc is installed",
"Name": "java-11-openjdk-javadoc"
},
{
"ID": "oval:org.altlinux.errata:obj:202416693006",
"Version": "1",
"Comment": "java-11-openjdk-javadoc-zip is installed",
"Name": "java-11-openjdk-javadoc-zip"
},
{
"ID": "oval:org.altlinux.errata:obj:202416693007",
"Version": "1",
"Comment": "java-11-openjdk-jmods is installed",
"Name": "java-11-openjdk-jmods"
},
{
"ID": "oval:org.altlinux.errata:obj:202416693008",
"Version": "1",
"Comment": "java-11-openjdk-src is installed",
"Name": "java-11-openjdk-src"
},
{
"ID": "oval:org.altlinux.errata:obj:202416693009",
"Version": "1",
"Comment": "java-11-openjdk-static-libs is installed",
"Name": "java-11-openjdk-static-libs"
}
]
}

23
oval/c10f1/ALT-PU-2024-16693/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202416693001",
"Version": "1",
"Comment": "package EVR is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Arch": {},
"EVR": {
"Text": "0:11.0.25.0.9-alt0.c10.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

126
oval/c10f1/ALT-PU-2024-16693/tests.json Normal file
View File

@ -0,0 +1,126 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202416693001",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416693002",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-demo is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416693003",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-devel is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416693004",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-headless is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416693005",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-javadoc is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416693006",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-javadoc-zip is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416693007",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-jmods is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416693008",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-src is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416693009",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-static-libs is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416693009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416693001"
}
}
]
}

179
oval/c10f1/ALT-PU-2024-16760/definitions.json Normal file
View File

File diff suppressed because one or more lines are too long

76
oval/c10f1/ALT-PU-2024-16760/objects.json Normal file
View File

@ -0,0 +1,76 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202416760001",
"Version": "1",
"Comment": "java-17-openjdk is installed",
"Name": "java-17-openjdk"
},
{
"ID": "oval:org.altlinux.errata:obj:202416760002",
"Version": "1",
"Comment": "java-17-openjdk-demo is installed",
"Name": "java-17-openjdk-demo"
},
{
"ID": "oval:org.altlinux.errata:obj:202416760003",
"Version": "1",
"Comment": "java-17-openjdk-devel is installed",
"Name": "java-17-openjdk-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:202416760004",
"Version": "1",
"Comment": "java-17-openjdk-headless is installed",
"Name": "java-17-openjdk-headless"
},
{
"ID": "oval:org.altlinux.errata:obj:202416760005",
"Version": "1",
"Comment": "java-17-openjdk-javadoc is installed",
"Name": "java-17-openjdk-javadoc"
},
{
"ID": "oval:org.altlinux.errata:obj:202416760006",
"Version": "1",
"Comment": "java-17-openjdk-javadoc-zip is installed",
"Name": "java-17-openjdk-javadoc-zip"
},
{
"ID": "oval:org.altlinux.errata:obj:202416760007",
"Version": "1",
"Comment": "java-17-openjdk-jmods is installed",
"Name": "java-17-openjdk-jmods"
},
{
"ID": "oval:org.altlinux.errata:obj:202416760008",
"Version": "1",
"Comment": "java-17-openjdk-src is installed",
"Name": "java-17-openjdk-src"
}
]
}

23
oval/c10f1/ALT-PU-2024-16760/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202416760001",
"Version": "1",
"Comment": "package EVR is earlier than 0:17.0.13.0.11-alt1",
"Arch": {},
"EVR": {
"Text": "0:17.0.13.0.11-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

114
oval/c10f1/ALT-PU-2024-16760/tests.json Normal file
View File

@ -0,0 +1,114 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202416760001",
"Version": "1",
"Check": "all",
"Comment": "java-17-openjdk is earlier than 0:17.0.13.0.11-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416760001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416760001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416760002",
"Version": "1",
"Check": "all",
"Comment": "java-17-openjdk-demo is earlier than 0:17.0.13.0.11-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416760002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416760001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416760003",
"Version": "1",
"Check": "all",
"Comment": "java-17-openjdk-devel is earlier than 0:17.0.13.0.11-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416760003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416760001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416760004",
"Version": "1",
"Check": "all",
"Comment": "java-17-openjdk-headless is earlier than 0:17.0.13.0.11-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416760004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416760001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416760005",
"Version": "1",
"Check": "all",
"Comment": "java-17-openjdk-javadoc is earlier than 0:17.0.13.0.11-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416760005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416760001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416760006",
"Version": "1",
"Check": "all",
"Comment": "java-17-openjdk-javadoc-zip is earlier than 0:17.0.13.0.11-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416760006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416760001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416760007",
"Version": "1",
"Check": "all",
"Comment": "java-17-openjdk-jmods is earlier than 0:17.0.13.0.11-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416760007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416760001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416760008",
"Version": "1",
"Check": "all",
"Comment": "java-17-openjdk-src is earlier than 0:17.0.13.0.11-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416760008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416760001"
}
}
]
}

5
oval/c9f2/ALT-PU-2014-1407/definitions.json
View File

@ -399,10 +399,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/c9f2/ALT-PU-2014-1408/definitions.json
View File

@ -334,10 +334,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/c9f2/ALT-PU-2014-1411/definitions.json
View File

@ -394,10 +394,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/p10/ALT-PU-2014-1407/definitions.json
View File

@ -404,10 +404,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/p10/ALT-PU-2014-1408/definitions.json
View File

@ -339,10 +339,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/p10/ALT-PU-2014-1411/definitions.json
View File

@ -399,10 +399,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

207
oval/p10/ALT-PU-2024-16698/definitions.json Normal file
View File

File diff suppressed because one or more lines are too long

82
oval/p10/ALT-PU-2024-16698/objects.json Normal file
View File

@ -0,0 +1,82 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202416698001",
"Version": "1",
"Comment": "java-11-openjdk is installed",
"Name": "java-11-openjdk"
},
{
"ID": "oval:org.altlinux.errata:obj:202416698002",
"Version": "1",
"Comment": "java-11-openjdk-demo is installed",
"Name": "java-11-openjdk-demo"
},
{
"ID": "oval:org.altlinux.errata:obj:202416698003",
"Version": "1",
"Comment": "java-11-openjdk-devel is installed",
"Name": "java-11-openjdk-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:202416698004",
"Version": "1",
"Comment": "java-11-openjdk-headless is installed",
"Name": "java-11-openjdk-headless"
},
{
"ID": "oval:org.altlinux.errata:obj:202416698005",
"Version": "1",
"Comment": "java-11-openjdk-javadoc is installed",
"Name": "java-11-openjdk-javadoc"
},
{
"ID": "oval:org.altlinux.errata:obj:202416698006",
"Version": "1",
"Comment": "java-11-openjdk-javadoc-zip is installed",
"Name": "java-11-openjdk-javadoc-zip"
},
{
"ID": "oval:org.altlinux.errata:obj:202416698007",
"Version": "1",
"Comment": "java-11-openjdk-jmods is installed",
"Name": "java-11-openjdk-jmods"
},
{
"ID": "oval:org.altlinux.errata:obj:202416698008",
"Version": "1",
"Comment": "java-11-openjdk-src is installed",
"Name": "java-11-openjdk-src"
},
{
"ID": "oval:org.altlinux.errata:obj:202416698009",
"Version": "1",
"Comment": "java-11-openjdk-static-libs is installed",
"Name": "java-11-openjdk-static-libs"
}
]
}

23
oval/p10/ALT-PU-2024-16698/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202416698001",
"Version": "1",
"Comment": "package EVR is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Arch": {},
"EVR": {
"Text": "0:11.0.25.0.9-alt0.c10.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

126
oval/p10/ALT-PU-2024-16698/tests.json Normal file
View File

@ -0,0 +1,126 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202416698001",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416698002",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-demo is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416698003",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-devel is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416698004",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-headless is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416698005",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-javadoc is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416698006",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-javadoc-zip is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416698007",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-jmods is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416698008",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-src is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416698009",
"Version": "1",
"Check": "all",
"Comment": "java-11-openjdk-static-libs is earlier than 0:11.0.25.0.9-alt0.c10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416698009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416698001"
}
}
]
}

4
oval/p10/ALT-PU-2024-4843/definitions.json
View File

@ -1383,11 +1383,11 @@
{
"ID": "BDU:2023-03584",
"CVSS": "AV:L/AC:H/Au:S/C:C/I:C/A:C",
"CVSS3": "AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"CVSS3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-362, CWE-416",
"Href": "https://bdu.fstec.ru/vul/2023-03584",
"Impact": "High",
"Public": "20230707"
"Public": "20230627"
},
{
"ID": "BDU:2023-03677",

179
oval/p10/ALT-PU-2024-9477/definitions.json Normal file
View File

@ -0,0 +1,179 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20249477",
"Version": "oval:org.altlinux.errata:def:20249477",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-9477: package `krb5` update to version 1.19.4-alt4",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-9477",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-9477",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-07005",
"RefURL": "https://bdu.fstec.ru/vul/2024-07005",
"Source": "BDU"
},
{
"RefID": "BDU:2024-07016",
"RefURL": "https://bdu.fstec.ru/vul/2024-07016",
"Source": "BDU"
},
{
"RefID": "CVE-2024-37370",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-37370",
"Source": "CVE"
},
{
"RefID": "CVE-2024-37371",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-37371",
"Source": "CVE"
}
],
"Description": "This update upgrades krb5 to version 1.19.4-alt4. \nSecurity Fix(es):\n\n * BDU:2024-07005: Уязвимость реализации сетевого протокола аутентификации Kerberos 5, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю оказать воздействие на конфиденциальность и доступность защищаемой информации\n\n * BDU:2024-07016: Уязвимость реализации сетевого протокола аутентификации Kerberos 5, связанная с недостаточной проверкой входных данных, позволяющая нарушителю получить несанкционированный доступ к токену-оболочки GSS krb5\n\n * CVE-2024-37370: In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application.\n\n * CVE-2024-37371: In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-11"
},
"Updated": {
"Date": "2024-12-11"
},
"BDUs": [
{
"ID": "BDU:2024-07005",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"CWE": "CWE-125",
"Href": "https://bdu.fstec.ru/vul/2024-07005",
"Impact": "Critical",
"Public": "20240628"
},
{
"ID": "BDU:2024-07016",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-20",
"Href": "https://bdu.fstec.ru/vul/2024-07016",
"Impact": "High",
"Public": "20240628"
}
],
"CVEs": [
{
"ID": "CVE-2024-37370",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-37370",
"Impact": "High",
"Public": "20240628"
},
{
"ID": "CVE-2024-37371",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"CWE": "NVD-CWE-Other",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-37371",
"Impact": "Critical",
"Public": "20240628"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20249477001",
"Comment": "krb5-doc is earlier than 0:1.19.4-alt4"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249477002",
"Comment": "krb5-kadmin is earlier than 0:1.19.4-alt4"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249477003",
"Comment": "krb5-kdc is earlier than 0:1.19.4-alt4"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249477004",
"Comment": "krb5-kinit is earlier than 0:1.19.4-alt4"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249477005",
"Comment": "krb5-ksu is earlier than 0:1.19.4-alt4"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249477006",
"Comment": "libkrb5 is earlier than 0:1.19.4-alt4"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249477007",
"Comment": "libkrb5-devel is earlier than 0:1.19.4-alt4"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249477008",
"Comment": "libkrb5-ldap is earlier than 0:1.19.4-alt4"
}
]
}
]
}
}
]
}

76
oval/p10/ALT-PU-2024-9477/objects.json Normal file
View File

@ -0,0 +1,76 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20249477001",
"Version": "1",
"Comment": "krb5-doc is installed",
"Name": "krb5-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:20249477002",
"Version": "1",
"Comment": "krb5-kadmin is installed",
"Name": "krb5-kadmin"
},
{
"ID": "oval:org.altlinux.errata:obj:20249477003",
"Version": "1",
"Comment": "krb5-kdc is installed",
"Name": "krb5-kdc"
},
{
"ID": "oval:org.altlinux.errata:obj:20249477004",
"Version": "1",
"Comment": "krb5-kinit is installed",
"Name": "krb5-kinit"
},
{
"ID": "oval:org.altlinux.errata:obj:20249477005",
"Version": "1",
"Comment": "krb5-ksu is installed",
"Name": "krb5-ksu"
},
{
"ID": "oval:org.altlinux.errata:obj:20249477006",
"Version": "1",
"Comment": "libkrb5 is installed",
"Name": "libkrb5"
},
{
"ID": "oval:org.altlinux.errata:obj:20249477007",
"Version": "1",
"Comment": "libkrb5-devel is installed",
"Name": "libkrb5-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20249477008",
"Version": "1",
"Comment": "libkrb5-ldap is installed",
"Name": "libkrb5-ldap"
}
]
}

23
oval/p10/ALT-PU-2024-9477/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20249477001",
"Version": "1",
"Comment": "package EVR is earlier than 0:1.19.4-alt4",
"Arch": {},
"EVR": {
"Text": "0:1.19.4-alt4",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

114
oval/p10/ALT-PU-2024-9477/tests.json Normal file
View File

@ -0,0 +1,114 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20249477001",
"Version": "1",
"Check": "all",
"Comment": "krb5-doc is earlier than 0:1.19.4-alt4",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249477001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249477001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249477002",
"Version": "1",
"Check": "all",
"Comment": "krb5-kadmin is earlier than 0:1.19.4-alt4",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249477002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249477001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249477003",
"Version": "1",
"Check": "all",
"Comment": "krb5-kdc is earlier than 0:1.19.4-alt4",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249477003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249477001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249477004",
"Version": "1",
"Check": "all",
"Comment": "krb5-kinit is earlier than 0:1.19.4-alt4",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249477004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249477001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249477005",
"Version": "1",
"Check": "all",
"Comment": "krb5-ksu is earlier than 0:1.19.4-alt4",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249477005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249477001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249477006",
"Version": "1",
"Check": "all",
"Comment": "libkrb5 is earlier than 0:1.19.4-alt4",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249477006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249477001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249477007",
"Version": "1",
"Check": "all",
"Comment": "libkrb5-devel is earlier than 0:1.19.4-alt4",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249477007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249477001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249477008",
"Version": "1",
"Check": "all",
"Comment": "libkrb5-ldap is earlier than 0:1.19.4-alt4",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249477008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249477001"
}
}
]
}

5
oval/p9/ALT-PU-2014-1407/definitions.json
View File

@ -404,10 +404,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/p9/ALT-PU-2014-1408/definitions.json
View File

@ -339,10 +339,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{

5
oval/p9/ALT-PU-2014-1411/definitions.json
View File

@ -399,10 +399,11 @@
},
{
"ID": "BDU:2014-00242",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-264",
"Href": "https://bdu.fstec.ru/vul/2014-00242",
"Impact": "Low",
"Impact": "High",
"Public": "20140319"
},
{