pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ALT Vulnerability

Browse Source
This commit is contained in:
Иван Пепеляев 2024-04-27 03:02:15 +00:00
parent ac176022f6
commit 3cec0411e4
136 changed files with 10584 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

136
oval/p10/ALT-PU-2024-6633/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246633",
"Version": "oval:org.altlinux.errata:def:20246633",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6633: package `qt5-script` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6633",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6633",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-script to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246633001",
"Comment": "libqt5-script is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246633002",
"Comment": "qt5-script-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246633003",
"Comment": "qt5-script-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246633004",
"Comment": "qt5-script-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6633/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246633001",
"Version": "1",
"Comment": "libqt5-script is installed",
"Name": "libqt5-script"
},
{
"ID": "oval:org.altlinux.errata:obj:20246633002",
"Version": "1",
"Comment": "qt5-script-common is installed",
"Name": "qt5-script-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246633003",
"Version": "1",
"Comment": "qt5-script-devel is installed",
"Name": "qt5-script-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246633004",
"Version": "1",
"Comment": "qt5-script-doc is installed",
"Name": "qt5-script-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6633/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246633001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6633/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246633001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-script is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246633001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246633001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246633002",
"Version": "1",
"Check": "all",
"Comment": "qt5-script-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246633002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246633001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246633003",
"Version": "1",
"Check": "all",
"Comment": "qt5-script-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246633003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246633001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246633004",
"Version": "1",
"Check": "all",
"Comment": "qt5-script-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246633004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246633001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6635/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246635",
"Version": "oval:org.altlinux.errata:def:20246635",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6635: package `qt5-websockets` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6635",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6635",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-websockets to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246635001",
"Comment": "libqt5-websockets is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246635002",
"Comment": "qt5-websockets-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246635003",
"Comment": "qt5-websockets-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246635004",
"Comment": "qt5-websockets-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6635/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246635001",
"Version": "1",
"Comment": "libqt5-websockets is installed",
"Name": "libqt5-websockets"
},
{
"ID": "oval:org.altlinux.errata:obj:20246635002",
"Version": "1",
"Comment": "qt5-websockets-common is installed",
"Name": "qt5-websockets-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246635003",
"Version": "1",
"Comment": "qt5-websockets-devel is installed",
"Name": "qt5-websockets-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246635004",
"Version": "1",
"Comment": "qt5-websockets-doc is installed",
"Name": "qt5-websockets-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6635/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246635001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6635/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246635001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-websockets is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246635001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246635001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246635002",
"Version": "1",
"Check": "all",
"Comment": "qt5-websockets-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246635002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246635001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246635003",
"Version": "1",
"Check": "all",
"Comment": "qt5-websockets-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246635003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246635001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246635004",
"Version": "1",
"Check": "all",
"Comment": "qt5-websockets-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246635004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246635001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6636/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246636",
"Version": "oval:org.altlinux.errata:def:20246636",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6636: package `qt5-multimedia` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6636",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6636",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-multimedia to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246636001",
"Comment": "libqt5-multimedia is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246636002",
"Comment": "qt5-multimedia-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246636003",
"Comment": "qt5-multimedia-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246636004",
"Comment": "qt5-multimedia-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6636/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246636001",
"Version": "1",
"Comment": "libqt5-multimedia is installed",
"Name": "libqt5-multimedia"
},
{
"ID": "oval:org.altlinux.errata:obj:20246636002",
"Version": "1",
"Comment": "qt5-multimedia-common is installed",
"Name": "qt5-multimedia-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246636003",
"Version": "1",
"Comment": "qt5-multimedia-devel is installed",
"Name": "qt5-multimedia-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246636004",
"Version": "1",
"Comment": "qt5-multimedia-doc is installed",
"Name": "qt5-multimedia-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6636/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246636001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6636/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246636001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-multimedia is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246636001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246636001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246636002",
"Version": "1",
"Check": "all",
"Comment": "qt5-multimedia-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246636002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246636001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246636003",
"Version": "1",
"Check": "all",
"Comment": "qt5-multimedia-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246636003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246636001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246636004",
"Version": "1",
"Check": "all",
"Comment": "qt5-multimedia-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246636004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246636001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6637/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246637",
"Version": "oval:org.altlinux.errata:def:20246637",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6637: package `qt5-x11extras` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6637",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6637",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-x11extras to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246637001",
"Comment": "libqt5-x11extras is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246637002",
"Comment": "qt5-x11extras-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246637003",
"Comment": "qt5-x11extras-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246637004",
"Comment": "qt5-x11extras-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6637/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246637001",
"Version": "1",
"Comment": "libqt5-x11extras is installed",
"Name": "libqt5-x11extras"
},
{
"ID": "oval:org.altlinux.errata:obj:20246637002",
"Version": "1",
"Comment": "qt5-x11extras-common is installed",
"Name": "qt5-x11extras-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246637003",
"Version": "1",
"Comment": "qt5-x11extras-devel is installed",
"Name": "qt5-x11extras-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246637004",
"Version": "1",
"Comment": "qt5-x11extras-doc is installed",
"Name": "qt5-x11extras-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6637/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246637001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6637/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246637001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-x11extras is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246637001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246637001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246637002",
"Version": "1",
"Check": "all",
"Comment": "qt5-x11extras-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246637002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246637001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246637003",
"Version": "1",
"Check": "all",
"Comment": "qt5-x11extras-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246637003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246637001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246637004",
"Version": "1",
"Check": "all",
"Comment": "qt5-x11extras-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246637004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246637001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6638/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246638",
"Version": "oval:org.altlinux.errata:def:20246638",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6638: package `qt5-svg` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6638",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6638",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-svg to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246638001",
"Comment": "libqt5-svg is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246638002",
"Comment": "qt5-svg-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246638003",
"Comment": "qt5-svg-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246638004",
"Comment": "qt5-svg-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6638/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246638001",
"Version": "1",
"Comment": "libqt5-svg is installed",
"Name": "libqt5-svg"
},
{
"ID": "oval:org.altlinux.errata:obj:20246638002",
"Version": "1",
"Comment": "qt5-svg-common is installed",
"Name": "qt5-svg-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246638003",
"Version": "1",
"Comment": "qt5-svg-devel is installed",
"Name": "qt5-svg-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246638004",
"Version": "1",
"Comment": "qt5-svg-doc is installed",
"Name": "qt5-svg-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6638/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246638001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6638/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246638001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-svg is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246638001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246638002",
"Version": "1",
"Check": "all",
"Comment": "qt5-svg-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246638002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246638003",
"Version": "1",
"Check": "all",
"Comment": "qt5-svg-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246638003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246638001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246638004",
"Version": "1",
"Check": "all",
"Comment": "qt5-svg-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246638004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246638001"
}
}
]
}

144
oval/p10/ALT-PU-2024-6639/definitions.json Normal file
View File

@ -0,0 +1,144 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246639",
"Version": "oval:org.altlinux.errata:def:20246639",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6639: package `qt5-connectivity` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6639",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6639",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-connectivity to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246639001",
"Comment": "libqt5-bluetooth is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246639002",
"Comment": "libqt5-nfc is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246639003",
"Comment": "qt5-connectivity is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246639004",
"Comment": "qt5-connectivity-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246639005",
"Comment": "qt5-connectivity-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246639006",
"Comment": "qt5-connectivity-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

64
oval/p10/ALT-PU-2024-6639/objects.json Normal file
View File

@ -0,0 +1,64 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246639001",
"Version": "1",
"Comment": "libqt5-bluetooth is installed",
"Name": "libqt5-bluetooth"
},
{
"ID": "oval:org.altlinux.errata:obj:20246639002",
"Version": "1",
"Comment": "libqt5-nfc is installed",
"Name": "libqt5-nfc"
},
{
"ID": "oval:org.altlinux.errata:obj:20246639003",
"Version": "1",
"Comment": "qt5-connectivity is installed",
"Name": "qt5-connectivity"
},
{
"ID": "oval:org.altlinux.errata:obj:20246639004",
"Version": "1",
"Comment": "qt5-connectivity-common is installed",
"Name": "qt5-connectivity-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246639005",
"Version": "1",
"Comment": "qt5-connectivity-devel is installed",
"Name": "qt5-connectivity-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246639006",
"Version": "1",
"Comment": "qt5-connectivity-doc is installed",
"Name": "qt5-connectivity-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6639/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246639001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

90
oval/p10/ALT-PU-2024-6639/tests.json Normal file
View File

@ -0,0 +1,90 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246639001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-bluetooth is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246639001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246639001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246639002",
"Version": "1",
"Check": "all",
"Comment": "libqt5-nfc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246639002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246639001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246639003",
"Version": "1",
"Check": "all",
"Comment": "qt5-connectivity is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246639003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246639001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246639004",
"Version": "1",
"Check": "all",
"Comment": "qt5-connectivity-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246639004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246639001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246639005",
"Version": "1",
"Check": "all",
"Comment": "qt5-connectivity-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246639005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246639001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246639006",
"Version": "1",
"Check": "all",
"Comment": "qt5-connectivity-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246639006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246639001"
}
}
]
}

140
oval/p10/ALT-PU-2024-6640/definitions.json Normal file
View File

@ -0,0 +1,140 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246640",
"Version": "oval:org.altlinux.errata:def:20246640",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6640: package `qt5-serialbus` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6640",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6640",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-serialbus to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246640001",
"Comment": "libqt5-serialbus is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246640002",
"Comment": "qt5-serialbus is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246640003",
"Comment": "qt5-serialbus-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246640004",
"Comment": "qt5-serialbus-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246640005",
"Comment": "qt5-serialbus-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

58
oval/p10/ALT-PU-2024-6640/objects.json Normal file
View File

@ -0,0 +1,58 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246640001",
"Version": "1",
"Comment": "libqt5-serialbus is installed",
"Name": "libqt5-serialbus"
},
{
"ID": "oval:org.altlinux.errata:obj:20246640002",
"Version": "1",
"Comment": "qt5-serialbus is installed",
"Name": "qt5-serialbus"
},
{
"ID": "oval:org.altlinux.errata:obj:20246640003",
"Version": "1",
"Comment": "qt5-serialbus-common is installed",
"Name": "qt5-serialbus-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246640004",
"Version": "1",
"Comment": "qt5-serialbus-devel is installed",
"Name": "qt5-serialbus-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246640005",
"Version": "1",
"Comment": "qt5-serialbus-doc is installed",
"Name": "qt5-serialbus-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6640/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246640001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

78
oval/p10/ALT-PU-2024-6640/tests.json Normal file
View File

@ -0,0 +1,78 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246640001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-serialbus is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246640001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246640001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246640002",
"Version": "1",
"Check": "all",
"Comment": "qt5-serialbus is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246640002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246640001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246640003",
"Version": "1",
"Check": "all",
"Comment": "qt5-serialbus-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246640003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246640001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246640004",
"Version": "1",
"Check": "all",
"Comment": "qt5-serialbus-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246640004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246640001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246640005",
"Version": "1",
"Check": "all",
"Comment": "qt5-serialbus-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246640005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246640001"
}
}
]
}

132
oval/p10/ALT-PU-2024-6641/definitions.json Normal file
View File

@ -0,0 +1,132 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246641",
"Version": "oval:org.altlinux.errata:def:20246641",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6641: package `qt5-graphicaleffects` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6641",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6641",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-graphicaleffects to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246641001",
"Comment": "qt5-graphicaleffects is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246641002",
"Comment": "qt5-graphicaleffects-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246641003",
"Comment": "qt5-graphicaleffects-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

46
oval/p10/ALT-PU-2024-6641/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246641001",
"Version": "1",
"Comment": "qt5-graphicaleffects is installed",
"Name": "qt5-graphicaleffects"
},
{
"ID": "oval:org.altlinux.errata:obj:20246641002",
"Version": "1",
"Comment": "qt5-graphicaleffects-common is installed",
"Name": "qt5-graphicaleffects-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246641003",
"Version": "1",
"Comment": "qt5-graphicaleffects-doc is installed",
"Name": "qt5-graphicaleffects-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6641/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246641001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/p10/ALT-PU-2024-6641/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246641001",
"Version": "1",
"Check": "all",
"Comment": "qt5-graphicaleffects is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246641001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246641001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246641002",
"Version": "1",
"Check": "all",
"Comment": "qt5-graphicaleffects-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246641002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246641001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246641003",
"Version": "1",
"Check": "all",
"Comment": "qt5-graphicaleffects-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246641003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246641001"
}
}
]
}

124
oval/p10/ALT-PU-2024-6642/definitions.json Normal file
View File

@ -0,0 +1,124 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246642",
"Version": "oval:org.altlinux.errata:def:20246642",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6642: package `qt5-doc` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6642",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6642",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-doc to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246642001",
"Comment": "qt5-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

34
oval/p10/ALT-PU-2024-6642/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246642001",
"Version": "1",
"Comment": "qt5-doc is installed",
"Name": "qt5-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6642/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246642001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/p10/ALT-PU-2024-6642/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246642001",
"Version": "1",
"Check": "all",
"Comment": "qt5-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246642001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246642001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6643/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246643",
"Version": "oval:org.altlinux.errata:def:20246643",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6643: package `qt5-webview` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6643",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6643",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-webview to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246643001",
"Comment": "libqt5-webview is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246643002",
"Comment": "qt5-webview-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246643003",
"Comment": "qt5-webview-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246643004",
"Comment": "qt5-webview-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6643/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246643001",
"Version": "1",
"Comment": "libqt5-webview is installed",
"Name": "libqt5-webview"
},
{
"ID": "oval:org.altlinux.errata:obj:20246643002",
"Version": "1",
"Comment": "qt5-webview-common is installed",
"Name": "qt5-webview-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246643003",
"Version": "1",
"Comment": "qt5-webview-devel is installed",
"Name": "qt5-webview-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246643004",
"Version": "1",
"Comment": "qt5-webview-doc is installed",
"Name": "qt5-webview-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6643/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246643001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6643/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246643001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-webview is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246643001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246643001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246643002",
"Version": "1",
"Check": "all",
"Comment": "qt5-webview-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246643002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246643001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246643003",
"Version": "1",
"Check": "all",
"Comment": "qt5-webview-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246643003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246643001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246643004",
"Version": "1",
"Check": "all",
"Comment": "qt5-webview-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246643004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246643001"
}
}
]
}

184
oval/p10/ALT-PU-2024-6644/definitions.json Normal file
View File

@ -0,0 +1,184 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246644",
"Version": "oval:org.altlinux.errata:def:20246644",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6644: package `qt5-3d` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6644",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6644",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-3d to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246644001",
"Comment": "libqt5-3danimation is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644002",
"Comment": "libqt5-3dcore is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644003",
"Comment": "libqt5-3dextras is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644004",
"Comment": "libqt5-3dinput is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644005",
"Comment": "libqt5-3dlogic is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644006",
"Comment": "libqt5-3dquick is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644007",
"Comment": "libqt5-3dquickanimation is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644008",
"Comment": "libqt5-3dquickextras is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644009",
"Comment": "libqt5-3dquickinput is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644010",
"Comment": "libqt5-3dquickrender is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644011",
"Comment": "libqt5-3dquickscene2d is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644012",
"Comment": "libqt5-3drender is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644013",
"Comment": "qt5-3d is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644014",
"Comment": "qt5-3d-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644015",
"Comment": "qt5-3d-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246644016",
"Comment": "qt5-3d-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

124
oval/p10/ALT-PU-2024-6644/objects.json Normal file
View File

@ -0,0 +1,124 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246644001",
"Version": "1",
"Comment": "libqt5-3danimation is installed",
"Name": "libqt5-3danimation"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644002",
"Version": "1",
"Comment": "libqt5-3dcore is installed",
"Name": "libqt5-3dcore"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644003",
"Version": "1",
"Comment": "libqt5-3dextras is installed",
"Name": "libqt5-3dextras"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644004",
"Version": "1",
"Comment": "libqt5-3dinput is installed",
"Name": "libqt5-3dinput"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644005",
"Version": "1",
"Comment": "libqt5-3dlogic is installed",
"Name": "libqt5-3dlogic"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644006",
"Version": "1",
"Comment": "libqt5-3dquick is installed",
"Name": "libqt5-3dquick"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644007",
"Version": "1",
"Comment": "libqt5-3dquickanimation is installed",
"Name": "libqt5-3dquickanimation"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644008",
"Version": "1",
"Comment": "libqt5-3dquickextras is installed",
"Name": "libqt5-3dquickextras"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644009",
"Version": "1",
"Comment": "libqt5-3dquickinput is installed",
"Name": "libqt5-3dquickinput"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644010",
"Version": "1",
"Comment": "libqt5-3dquickrender is installed",
"Name": "libqt5-3dquickrender"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644011",
"Version": "1",
"Comment": "libqt5-3dquickscene2d is installed",
"Name": "libqt5-3dquickscene2d"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644012",
"Version": "1",
"Comment": "libqt5-3drender is installed",
"Name": "libqt5-3drender"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644013",
"Version": "1",
"Comment": "qt5-3d is installed",
"Name": "qt5-3d"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644014",
"Version": "1",
"Comment": "qt5-3d-common is installed",
"Name": "qt5-3d-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644015",
"Version": "1",
"Comment": "qt5-3d-devel is installed",
"Name": "qt5-3d-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246644016",
"Version": "1",
"Comment": "qt5-3d-doc is installed",
"Name": "qt5-3d-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6644/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246644001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

210
oval/p10/ALT-PU-2024-6644/tests.json Normal file
View File

@ -0,0 +1,210 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246644001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3danimation is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644002",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dcore is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644003",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dextras is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644004",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dinput is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644005",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dlogic is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644006",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dquick is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644007",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dquickanimation is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644008",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dquickextras is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644009",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dquickinput is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644010",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dquickrender is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644011",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3dquickscene2d is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644012",
"Version": "1",
"Check": "all",
"Comment": "libqt5-3drender is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644013",
"Version": "1",
"Check": "all",
"Comment": "qt5-3d is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644014",
"Version": "1",
"Check": "all",
"Comment": "qt5-3d-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644014"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644015",
"Version": "1",
"Check": "all",
"Comment": "qt5-3d-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644015"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246644016",
"Version": "1",
"Check": "all",
"Comment": "qt5-3d-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246644016"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246644001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6645/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246645",
"Version": "oval:org.altlinux.errata:def:20246645",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6645: package `qt5-charts` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6645",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6645",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-charts to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246645001",
"Comment": "libqt5-charts is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246645002",
"Comment": "qt5-charts-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246645003",
"Comment": "qt5-charts-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246645004",
"Comment": "qt5-charts-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6645/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246645001",
"Version": "1",
"Comment": "libqt5-charts is installed",
"Name": "libqt5-charts"
},
{
"ID": "oval:org.altlinux.errata:obj:20246645002",
"Version": "1",
"Comment": "qt5-charts-common is installed",
"Name": "qt5-charts-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246645003",
"Version": "1",
"Comment": "qt5-charts-devel is installed",
"Name": "qt5-charts-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246645004",
"Version": "1",
"Comment": "qt5-charts-doc is installed",
"Name": "qt5-charts-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6645/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246645001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6645/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246645001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-charts is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246645001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246645001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246645002",
"Version": "1",
"Check": "all",
"Comment": "qt5-charts-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246645002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246645001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246645003",
"Version": "1",
"Check": "all",
"Comment": "qt5-charts-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246645003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246645001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246645004",
"Version": "1",
"Check": "all",
"Comment": "qt5-charts-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246645004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246645001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6646/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246646",
"Version": "oval:org.altlinux.errata:def:20246646",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6646: package `qt5-speech` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6646",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6646",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-speech to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246646001",
"Comment": "libqt5-texttospeech is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246646002",
"Comment": "qt5-speech-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246646003",
"Comment": "qt5-speech-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246646004",
"Comment": "qt5-speech-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6646/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246646001",
"Version": "1",
"Comment": "libqt5-texttospeech is installed",
"Name": "libqt5-texttospeech"
},
{
"ID": "oval:org.altlinux.errata:obj:20246646002",
"Version": "1",
"Comment": "qt5-speech-common is installed",
"Name": "qt5-speech-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246646003",
"Version": "1",
"Comment": "qt5-speech-devel is installed",
"Name": "qt5-speech-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246646004",
"Version": "1",
"Comment": "qt5-speech-doc is installed",
"Name": "qt5-speech-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6646/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246646001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6646/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246646001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-texttospeech is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246646001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246646001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246646002",
"Version": "1",
"Check": "all",
"Comment": "qt5-speech-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246646002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246646001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246646003",
"Version": "1",
"Check": "all",
"Comment": "qt5-speech-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246646003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246646001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246646004",
"Version": "1",
"Check": "all",
"Comment": "qt5-speech-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246646004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246646001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6647/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246647",
"Version": "oval:org.altlinux.errata:def:20246647",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6647: package `qt5-gamepad` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6647",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6647",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-gamepad to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246647001",
"Comment": "libqt5-gamepad is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246647002",
"Comment": "qt5-gamepad-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246647003",
"Comment": "qt5-gamepad-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246647004",
"Comment": "qt5-gamepad-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6647/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246647001",
"Version": "1",
"Comment": "libqt5-gamepad is installed",
"Name": "libqt5-gamepad"
},
{
"ID": "oval:org.altlinux.errata:obj:20246647002",
"Version": "1",
"Comment": "qt5-gamepad-common is installed",
"Name": "qt5-gamepad-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246647003",
"Version": "1",
"Comment": "qt5-gamepad-devel is installed",
"Name": "qt5-gamepad-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246647004",
"Version": "1",
"Comment": "qt5-gamepad-doc is installed",
"Name": "qt5-gamepad-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6647/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246647001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6647/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246647001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-gamepad is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246647001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246647001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246647002",
"Version": "1",
"Check": "all",
"Comment": "qt5-gamepad-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246647002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246647001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246647003",
"Version": "1",
"Check": "all",
"Comment": "qt5-gamepad-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246647003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246647001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246647004",
"Version": "1",
"Check": "all",
"Comment": "qt5-gamepad-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246647004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246647001"
}
}
]
}

140
oval/p10/ALT-PU-2024-6648/definitions.json Normal file
View File

@ -0,0 +1,140 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246648",
"Version": "oval:org.altlinux.errata:def:20246648",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6648: package `qt5-remoteobjects` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6648",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6648",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-remoteobjects to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246648001",
"Comment": "libqt5-remoteobjects is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246648002",
"Comment": "qt5-remoteobjects is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246648003",
"Comment": "qt5-remoteobjects-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246648004",
"Comment": "qt5-remoteobjects-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246648005",
"Comment": "qt5-remoteobjects-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

58
oval/p10/ALT-PU-2024-6648/objects.json Normal file
View File

@ -0,0 +1,58 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246648001",
"Version": "1",
"Comment": "libqt5-remoteobjects is installed",
"Name": "libqt5-remoteobjects"
},
{
"ID": "oval:org.altlinux.errata:obj:20246648002",
"Version": "1",
"Comment": "qt5-remoteobjects is installed",
"Name": "qt5-remoteobjects"
},
{
"ID": "oval:org.altlinux.errata:obj:20246648003",
"Version": "1",
"Comment": "qt5-remoteobjects-common is installed",
"Name": "qt5-remoteobjects-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246648004",
"Version": "1",
"Comment": "qt5-remoteobjects-devel is installed",
"Name": "qt5-remoteobjects-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246648005",
"Version": "1",
"Comment": "qt5-remoteobjects-doc is installed",
"Name": "qt5-remoteobjects-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6648/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246648001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

78
oval/p10/ALT-PU-2024-6648/tests.json Normal file
View File

@ -0,0 +1,78 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246648001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-remoteobjects is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246648001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246648001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246648002",
"Version": "1",
"Check": "all",
"Comment": "qt5-remoteobjects is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246648002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246648001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246648003",
"Version": "1",
"Check": "all",
"Comment": "qt5-remoteobjects-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246648003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246648001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246648004",
"Version": "1",
"Check": "all",
"Comment": "qt5-remoteobjects-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246648004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246648001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246648005",
"Version": "1",
"Check": "all",
"Comment": "qt5-remoteobjects-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246648005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246648001"
}
}
]
}

224
oval/p10/ALT-PU-2024-6649/definitions.json Normal file
View File

@ -0,0 +1,224 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246649",
"Version": "oval:org.altlinux.errata:def:20246649",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6649: package `qt5-base` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6649",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6649",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-base to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246649001",
"Comment": "libqt5-concurrent is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649002",
"Comment": "libqt5-core is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649003",
"Comment": "libqt5-dbus is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649004",
"Comment": "libqt5-eglfsdeviceintegration is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649005",
"Comment": "libqt5-eglfskmssupport is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649006",
"Comment": "libqt5-gui is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649007",
"Comment": "libqt5-network is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649008",
"Comment": "libqt5-opengl is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649009",
"Comment": "libqt5-printsupport is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649010",
"Comment": "libqt5-sql is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649011",
"Comment": "libqt5-test is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649012",
"Comment": "libqt5-widgets is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649013",
"Comment": "libqt5-xcbqpa is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649014",
"Comment": "libqt5-xml is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649015",
"Comment": "qt5-base-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649016",
"Comment": "qt5-base-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649017",
"Comment": "qt5-base-devel-static is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649018",
"Comment": "qt5-base-doc is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649019",
"Comment": "qt5-qtbase is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649020",
"Comment": "qt5-qtbase-gui is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649021",
"Comment": "qt5-sql is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649022",
"Comment": "qt5-sql-interbase is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649023",
"Comment": "qt5-sql-mysql is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649024",
"Comment": "qt5-sql-odbc is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649025",
"Comment": "qt5-sql-postgresql is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246649026",
"Comment": "rpm-macros-qt5 is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

184
oval/p10/ALT-PU-2024-6649/objects.json Normal file
View File

@ -0,0 +1,184 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246649001",
"Version": "1",
"Comment": "libqt5-concurrent is installed",
"Name": "libqt5-concurrent"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649002",
"Version": "1",
"Comment": "libqt5-core is installed",
"Name": "libqt5-core"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649003",
"Version": "1",
"Comment": "libqt5-dbus is installed",
"Name": "libqt5-dbus"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649004",
"Version": "1",
"Comment": "libqt5-eglfsdeviceintegration is installed",
"Name": "libqt5-eglfsdeviceintegration"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649005",
"Version": "1",
"Comment": "libqt5-eglfskmssupport is installed",
"Name": "libqt5-eglfskmssupport"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649006",
"Version": "1",
"Comment": "libqt5-gui is installed",
"Name": "libqt5-gui"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649007",
"Version": "1",
"Comment": "libqt5-network is installed",
"Name": "libqt5-network"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649008",
"Version": "1",
"Comment": "libqt5-opengl is installed",
"Name": "libqt5-opengl"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649009",
"Version": "1",
"Comment": "libqt5-printsupport is installed",
"Name": "libqt5-printsupport"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649010",
"Version": "1",
"Comment": "libqt5-sql is installed",
"Name": "libqt5-sql"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649011",
"Version": "1",
"Comment": "libqt5-test is installed",
"Name": "libqt5-test"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649012",
"Version": "1",
"Comment": "libqt5-widgets is installed",
"Name": "libqt5-widgets"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649013",
"Version": "1",
"Comment": "libqt5-xcbqpa is installed",
"Name": "libqt5-xcbqpa"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649014",
"Version": "1",
"Comment": "libqt5-xml is installed",
"Name": "libqt5-xml"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649015",
"Version": "1",
"Comment": "qt5-base-common is installed",
"Name": "qt5-base-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649016",
"Version": "1",
"Comment": "qt5-base-devel is installed",
"Name": "qt5-base-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649017",
"Version": "1",
"Comment": "qt5-base-devel-static is installed",
"Name": "qt5-base-devel-static"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649018",
"Version": "1",
"Comment": "qt5-base-doc is installed",
"Name": "qt5-base-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649019",
"Version": "1",
"Comment": "qt5-qtbase is installed",
"Name": "qt5-qtbase"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649020",
"Version": "1",
"Comment": "qt5-qtbase-gui is installed",
"Name": "qt5-qtbase-gui"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649021",
"Version": "1",
"Comment": "qt5-sql is installed",
"Name": "qt5-sql"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649022",
"Version": "1",
"Comment": "qt5-sql-interbase is installed",
"Name": "qt5-sql-interbase"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649023",
"Version": "1",
"Comment": "qt5-sql-mysql is installed",
"Name": "qt5-sql-mysql"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649024",
"Version": "1",
"Comment": "qt5-sql-odbc is installed",
"Name": "qt5-sql-odbc"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649025",
"Version": "1",
"Comment": "qt5-sql-postgresql is installed",
"Name": "qt5-sql-postgresql"
},
{
"ID": "oval:org.altlinux.errata:obj:20246649026",
"Version": "1",
"Comment": "rpm-macros-qt5 is installed",
"Name": "rpm-macros-qt5"
}
]
}

23
oval/p10/ALT-PU-2024-6649/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246649001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

330
oval/p10/ALT-PU-2024-6649/tests.json Normal file
View File

@ -0,0 +1,330 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246649001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-concurrent is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649002",
"Version": "1",
"Check": "all",
"Comment": "libqt5-core is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649003",
"Version": "1",
"Check": "all",
"Comment": "libqt5-dbus is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649004",
"Version": "1",
"Check": "all",
"Comment": "libqt5-eglfsdeviceintegration is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649005",
"Version": "1",
"Check": "all",
"Comment": "libqt5-eglfskmssupport is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649006",
"Version": "1",
"Check": "all",
"Comment": "libqt5-gui is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649007",
"Version": "1",
"Check": "all",
"Comment": "libqt5-network is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649008",
"Version": "1",
"Check": "all",
"Comment": "libqt5-opengl is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649009",
"Version": "1",
"Check": "all",
"Comment": "libqt5-printsupport is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649010",
"Version": "1",
"Check": "all",
"Comment": "libqt5-sql is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649011",
"Version": "1",
"Check": "all",
"Comment": "libqt5-test is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649012",
"Version": "1",
"Check": "all",
"Comment": "libqt5-widgets is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649013",
"Version": "1",
"Check": "all",
"Comment": "libqt5-xcbqpa is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649014",
"Version": "1",
"Check": "all",
"Comment": "libqt5-xml is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649014"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649015",
"Version": "1",
"Check": "all",
"Comment": "qt5-base-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649015"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649016",
"Version": "1",
"Check": "all",
"Comment": "qt5-base-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649016"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649017",
"Version": "1",
"Check": "all",
"Comment": "qt5-base-devel-static is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649017"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649018",
"Version": "1",
"Check": "all",
"Comment": "qt5-base-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649018"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649019",
"Version": "1",
"Check": "all",
"Comment": "qt5-qtbase is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649019"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649020",
"Version": "1",
"Check": "all",
"Comment": "qt5-qtbase-gui is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649020"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649021",
"Version": "1",
"Check": "all",
"Comment": "qt5-sql is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649021"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649022",
"Version": "1",
"Check": "all",
"Comment": "qt5-sql-interbase is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649022"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649023",
"Version": "1",
"Check": "all",
"Comment": "qt5-sql-mysql is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649023"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649024",
"Version": "1",
"Check": "all",
"Comment": "qt5-sql-odbc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649024"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649025",
"Version": "1",
"Check": "all",
"Comment": "qt5-sql-postgresql is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649025"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246649026",
"Version": "1",
"Check": "all",
"Comment": "rpm-macros-qt5 is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246649026"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246649001"
}
}
]
}

172
oval/p10/ALT-PU-2024-6650/definitions.json Normal file
View File

@ -0,0 +1,172 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246650",
"Version": "oval:org.altlinux.errata:def:20246650",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6650: package `qt5-declarative` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6650",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6650",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-declarative to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246650001",
"Comment": "libqt5-qml is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650002",
"Comment": "libqt5-qmlmodels is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650003",
"Comment": "libqt5-qmlworkerscript is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650004",
"Comment": "libqt5-quick is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650005",
"Comment": "libqt5-quickparticles is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650006",
"Comment": "libqt5-quickshapes is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650007",
"Comment": "libqt5-quicktest is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650008",
"Comment": "libqt5-quickwidgets is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650009",
"Comment": "qt5-declarative-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650010",
"Comment": "qt5-declarative-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650011",
"Comment": "qt5-declarative-devel-static is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650012",
"Comment": "qt5-declarative-doc is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246650013",
"Comment": "rpm-build-qml is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

106
oval/p10/ALT-PU-2024-6650/objects.json Normal file
View File

@ -0,0 +1,106 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246650001",
"Version": "1",
"Comment": "libqt5-qml is installed",
"Name": "libqt5-qml"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650002",
"Version": "1",
"Comment": "libqt5-qmlmodels is installed",
"Name": "libqt5-qmlmodels"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650003",
"Version": "1",
"Comment": "libqt5-qmlworkerscript is installed",
"Name": "libqt5-qmlworkerscript"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650004",
"Version": "1",
"Comment": "libqt5-quick is installed",
"Name": "libqt5-quick"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650005",
"Version": "1",
"Comment": "libqt5-quickparticles is installed",
"Name": "libqt5-quickparticles"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650006",
"Version": "1",
"Comment": "libqt5-quickshapes is installed",
"Name": "libqt5-quickshapes"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650007",
"Version": "1",
"Comment": "libqt5-quicktest is installed",
"Name": "libqt5-quicktest"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650008",
"Version": "1",
"Comment": "libqt5-quickwidgets is installed",
"Name": "libqt5-quickwidgets"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650009",
"Version": "1",
"Comment": "qt5-declarative-common is installed",
"Name": "qt5-declarative-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650010",
"Version": "1",
"Comment": "qt5-declarative-devel is installed",
"Name": "qt5-declarative-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650011",
"Version": "1",
"Comment": "qt5-declarative-devel-static is installed",
"Name": "qt5-declarative-devel-static"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650012",
"Version": "1",
"Comment": "qt5-declarative-doc is installed",
"Name": "qt5-declarative-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:20246650013",
"Version": "1",
"Comment": "rpm-build-qml is installed",
"Name": "rpm-build-qml"
}
]
}

23
oval/p10/ALT-PU-2024-6650/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246650001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

174
oval/p10/ALT-PU-2024-6650/tests.json Normal file
View File

@ -0,0 +1,174 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246650001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-qml is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650002",
"Version": "1",
"Check": "all",
"Comment": "libqt5-qmlmodels is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650003",
"Version": "1",
"Check": "all",
"Comment": "libqt5-qmlworkerscript is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650004",
"Version": "1",
"Check": "all",
"Comment": "libqt5-quick is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650005",
"Version": "1",
"Check": "all",
"Comment": "libqt5-quickparticles is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650006",
"Version": "1",
"Check": "all",
"Comment": "libqt5-quickshapes is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650007",
"Version": "1",
"Check": "all",
"Comment": "libqt5-quicktest is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650008",
"Version": "1",
"Check": "all",
"Comment": "libqt5-quickwidgets is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650009",
"Version": "1",
"Check": "all",
"Comment": "qt5-declarative-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650010",
"Version": "1",
"Check": "all",
"Comment": "qt5-declarative-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650011",
"Version": "1",
"Check": "all",
"Comment": "qt5-declarative-devel-static is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650012",
"Version": "1",
"Check": "all",
"Comment": "qt5-declarative-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246650013",
"Version": "1",
"Check": "all",
"Comment": "rpm-build-qml is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246650013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246650001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6651/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246651",
"Version": "oval:org.altlinux.errata:def:20246651",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6651: package `qt5-xmlpatterns` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6651",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6651",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-xmlpatterns to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246651001",
"Comment": "libqt5-xmlpatterns is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246651002",
"Comment": "qt5-xmlpatterns-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246651003",
"Comment": "qt5-xmlpatterns-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246651004",
"Comment": "qt5-xmlpatterns-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6651/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246651001",
"Version": "1",
"Comment": "libqt5-xmlpatterns is installed",
"Name": "libqt5-xmlpatterns"
},
{
"ID": "oval:org.altlinux.errata:obj:20246651002",
"Version": "1",
"Comment": "qt5-xmlpatterns-common is installed",
"Name": "qt5-xmlpatterns-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246651003",
"Version": "1",
"Comment": "qt5-xmlpatterns-devel is installed",
"Name": "qt5-xmlpatterns-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246651004",
"Version": "1",
"Comment": "qt5-xmlpatterns-doc is installed",
"Name": "qt5-xmlpatterns-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6651/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246651001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6651/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246651001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-xmlpatterns is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246651001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246651001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246651002",
"Version": "1",
"Check": "all",
"Comment": "qt5-xmlpatterns-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246651002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246651001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246651003",
"Version": "1",
"Check": "all",
"Comment": "qt5-xmlpatterns-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246651003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246651001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246651004",
"Version": "1",
"Check": "all",
"Comment": "qt5-xmlpatterns-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246651004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246651001"
}
}
]
}

164
oval/p10/ALT-PU-2024-6652/definitions.json Normal file
View File

@ -0,0 +1,164 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246652",
"Version": "oval:org.altlinux.errata:def:20246652",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6652: package `qt5-tools` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6652",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6652",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-tools to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246652001",
"Comment": "libqt5-designer is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652002",
"Comment": "libqt5-designercomponents is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652003",
"Comment": "libqt5-help is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652004",
"Comment": "qt5-assistant is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652005",
"Comment": "qt5-dbus is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652006",
"Comment": "qt5-designer is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652007",
"Comment": "qt5-tools is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652008",
"Comment": "qt5-tools-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652009",
"Comment": "qt5-tools-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652010",
"Comment": "qt5-tools-devel-static is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246652011",
"Comment": "qt5-tools-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

94
oval/p10/ALT-PU-2024-6652/objects.json Normal file
View File

@ -0,0 +1,94 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246652001",
"Version": "1",
"Comment": "libqt5-designer is installed",
"Name": "libqt5-designer"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652002",
"Version": "1",
"Comment": "libqt5-designercomponents is installed",
"Name": "libqt5-designercomponents"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652003",
"Version": "1",
"Comment": "libqt5-help is installed",
"Name": "libqt5-help"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652004",
"Version": "1",
"Comment": "qt5-assistant is installed",
"Name": "qt5-assistant"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652005",
"Version": "1",
"Comment": "qt5-dbus is installed",
"Name": "qt5-dbus"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652006",
"Version": "1",
"Comment": "qt5-designer is installed",
"Name": "qt5-designer"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652007",
"Version": "1",
"Comment": "qt5-tools is installed",
"Name": "qt5-tools"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652008",
"Version": "1",
"Comment": "qt5-tools-common is installed",
"Name": "qt5-tools-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652009",
"Version": "1",
"Comment": "qt5-tools-devel is installed",
"Name": "qt5-tools-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652010",
"Version": "1",
"Comment": "qt5-tools-devel-static is installed",
"Name": "qt5-tools-devel-static"
},
{
"ID": "oval:org.altlinux.errata:obj:20246652011",
"Version": "1",
"Comment": "qt5-tools-doc is installed",
"Name": "qt5-tools-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6652/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246652001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

150
oval/p10/ALT-PU-2024-6652/tests.json Normal file
View File

@ -0,0 +1,150 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246652001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-designer is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652002",
"Version": "1",
"Check": "all",
"Comment": "libqt5-designercomponents is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652003",
"Version": "1",
"Check": "all",
"Comment": "libqt5-help is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652004",
"Version": "1",
"Check": "all",
"Comment": "qt5-assistant is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652005",
"Version": "1",
"Check": "all",
"Comment": "qt5-dbus is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652006",
"Version": "1",
"Check": "all",
"Comment": "qt5-designer is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652007",
"Version": "1",
"Check": "all",
"Comment": "qt5-tools is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652008",
"Version": "1",
"Check": "all",
"Comment": "qt5-tools-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652009",
"Version": "1",
"Check": "all",
"Comment": "qt5-tools-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652010",
"Version": "1",
"Check": "all",
"Comment": "qt5-tools-devel-static is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246652011",
"Version": "1",
"Check": "all",
"Comment": "qt5-tools-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246652011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246652001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6653/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246653",
"Version": "oval:org.altlinux.errata:def:20246653",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6653: package `qt5-serialport` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6653",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6653",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-serialport to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246653001",
"Comment": "libqt5-serialport is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246653002",
"Comment": "qt5-serialport-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246653003",
"Comment": "qt5-serialport-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246653004",
"Comment": "qt5-serialport-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6653/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246653001",
"Version": "1",
"Comment": "libqt5-serialport is installed",
"Name": "libqt5-serialport"
},
{
"ID": "oval:org.altlinux.errata:obj:20246653002",
"Version": "1",
"Comment": "qt5-serialport-common is installed",
"Name": "qt5-serialport-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246653003",
"Version": "1",
"Comment": "qt5-serialport-devel is installed",
"Name": "qt5-serialport-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246653004",
"Version": "1",
"Comment": "qt5-serialport-doc is installed",
"Name": "qt5-serialport-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6653/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246653001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6653/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246653001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-serialport is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246653001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246653001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246653002",
"Version": "1",
"Check": "all",
"Comment": "qt5-serialport-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246653002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246653001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246653003",
"Version": "1",
"Check": "all",
"Comment": "qt5-serialport-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246653003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246653001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246653004",
"Version": "1",
"Check": "all",
"Comment": "qt5-serialport-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246653004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246653001"
}
}
]
}

144
oval/p10/ALT-PU-2024-6654/definitions.json Normal file
View File

@ -0,0 +1,144 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246654",
"Version": "oval:org.altlinux.errata:def:20246654",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6654: package `qt5-location` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6654",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6654",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-location to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246654001",
"Comment": "libqt5-location is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246654002",
"Comment": "libqt5-positioning is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246654003",
"Comment": "libqt5-positioningquick is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246654004",
"Comment": "qt5-location-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246654005",
"Comment": "qt5-location-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246654006",
"Comment": "qt5-location-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

64
oval/p10/ALT-PU-2024-6654/objects.json Normal file
View File

@ -0,0 +1,64 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246654001",
"Version": "1",
"Comment": "libqt5-location is installed",
"Name": "libqt5-location"
},
{
"ID": "oval:org.altlinux.errata:obj:20246654002",
"Version": "1",
"Comment": "libqt5-positioning is installed",
"Name": "libqt5-positioning"
},
{
"ID": "oval:org.altlinux.errata:obj:20246654003",
"Version": "1",
"Comment": "libqt5-positioningquick is installed",
"Name": "libqt5-positioningquick"
},
{
"ID": "oval:org.altlinux.errata:obj:20246654004",
"Version": "1",
"Comment": "qt5-location-common is installed",
"Name": "qt5-location-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246654005",
"Version": "1",
"Comment": "qt5-location-devel is installed",
"Name": "qt5-location-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246654006",
"Version": "1",
"Comment": "qt5-location-doc is installed",
"Name": "qt5-location-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6654/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246654001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

90
oval/p10/ALT-PU-2024-6654/tests.json Normal file
View File

@ -0,0 +1,90 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246654001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-location is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246654001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246654001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246654002",
"Version": "1",
"Check": "all",
"Comment": "libqt5-positioning is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246654002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246654001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246654003",
"Version": "1",
"Check": "all",
"Comment": "libqt5-positioningquick is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246654003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246654001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246654004",
"Version": "1",
"Check": "all",
"Comment": "qt5-location-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246654004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246654001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246654005",
"Version": "1",
"Check": "all",
"Comment": "qt5-location-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246654005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246654001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246654006",
"Version": "1",
"Check": "all",
"Comment": "qt5-location-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246654006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246654001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6655/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246655",
"Version": "oval:org.altlinux.errata:def:20246655",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6655: package `qt5-sensors` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6655",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6655",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-sensors to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246655001",
"Comment": "libqt5-sensors is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246655002",
"Comment": "qt5-sensors-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246655003",
"Comment": "qt5-sensors-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246655004",
"Comment": "qt5-sensors-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6655/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246655001",
"Version": "1",
"Comment": "libqt5-sensors is installed",
"Name": "libqt5-sensors"
},
{
"ID": "oval:org.altlinux.errata:obj:20246655002",
"Version": "1",
"Comment": "qt5-sensors-common is installed",
"Name": "qt5-sensors-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246655003",
"Version": "1",
"Comment": "qt5-sensors-devel is installed",
"Name": "qt5-sensors-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246655004",
"Version": "1",
"Comment": "qt5-sensors-doc is installed",
"Name": "qt5-sensors-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6655/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246655001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6655/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246655001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-sensors is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246655001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246655001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246655002",
"Version": "1",
"Check": "all",
"Comment": "qt5-sensors-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246655002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246655001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246655003",
"Version": "1",
"Check": "all",
"Comment": "qt5-sensors-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246655003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246655001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246655004",
"Version": "1",
"Check": "all",
"Comment": "qt5-sensors-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246655004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246655001"
}
}
]
}

132
oval/p10/ALT-PU-2024-6656/definitions.json Normal file
View File

@ -0,0 +1,132 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246656",
"Version": "oval:org.altlinux.errata:def:20246656",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6656: package `qt5-webglplugin` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6656",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6656",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-webglplugin to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246656001",
"Comment": "qt5-webglplugin is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246656002",
"Comment": "qt5-webglplugin-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246656003",
"Comment": "qt5-webglplugin-devel is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

46
oval/p10/ALT-PU-2024-6656/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246656001",
"Version": "1",
"Comment": "qt5-webglplugin is installed",
"Name": "qt5-webglplugin"
},
{
"ID": "oval:org.altlinux.errata:obj:20246656002",
"Version": "1",
"Comment": "qt5-webglplugin-common is installed",
"Name": "qt5-webglplugin-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246656003",
"Version": "1",
"Comment": "qt5-webglplugin-devel is installed",
"Name": "qt5-webglplugin-devel"
}
]
}

23
oval/p10/ALT-PU-2024-6656/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246656001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/p10/ALT-PU-2024-6656/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246656001",
"Version": "1",
"Check": "all",
"Comment": "qt5-webglplugin is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246656001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246656001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246656002",
"Version": "1",
"Check": "all",
"Comment": "qt5-webglplugin-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246656002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246656001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246656003",
"Version": "1",
"Check": "all",
"Comment": "qt5-webglplugin-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246656003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246656001"
}
}
]
}

136
oval/p10/ALT-PU-2024-6657/definitions.json Normal file
View File

@ -0,0 +1,136 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246657",
"Version": "oval:org.altlinux.errata:def:20246657",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6657: package `qt5-webchannel` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6657",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6657",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-webchannel to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246657001",
"Comment": "libqt5-webchannel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246657002",
"Comment": "qt5-webchannel-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246657003",
"Comment": "qt5-webchannel-devel is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246657004",
"Comment": "qt5-webchannel-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-6657/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246657001",
"Version": "1",
"Comment": "libqt5-webchannel is installed",
"Name": "libqt5-webchannel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246657002",
"Version": "1",
"Comment": "qt5-webchannel-common is installed",
"Name": "qt5-webchannel-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246657003",
"Version": "1",
"Comment": "qt5-webchannel-devel is installed",
"Name": "qt5-webchannel-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246657004",
"Version": "1",
"Comment": "qt5-webchannel-doc is installed",
"Name": "qt5-webchannel-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6657/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246657001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-6657/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246657001",
"Version": "1",
"Check": "all",
"Comment": "libqt5-webchannel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246657001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246657001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246657002",
"Version": "1",
"Check": "all",
"Comment": "qt5-webchannel-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246657002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246657001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246657003",
"Version": "1",
"Check": "all",
"Comment": "qt5-webchannel-devel is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246657003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246657001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246657004",
"Version": "1",
"Check": "all",
"Comment": "qt5-webchannel-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246657004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246657001"
}
}
]
}

132
oval/p10/ALT-PU-2024-6658/definitions.json Normal file
View File

@ -0,0 +1,132 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246658",
"Version": "oval:org.altlinux.errata:def:20246658",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6658: package `qt5-quickcontrols` update to version 5.15.13-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6658",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6658",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-02373",
"RefURL": "https://bdu.fstec.ru/vul/2023-02373",
"Source": "BDU"
},
{
"RefID": "CVE-2023-24607",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Source": "CVE"
}
],
"Description": "This update upgrades qt5-quickcontrols to version 5.15.13-alt1. \nSecurity Fix(es):\n\n * BDU:2023-02373: Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-24607: Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2023-02373",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20, CWE-404",
"Href": "https://bdu.fstec.ru/vul/2023-02373",
"Impact": "High",
"Public": "20230415"
}
],
"CVEs": [
{
"ID": "CVE-2023-24607",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-24607",
"Impact": "High",
"Public": "20230415"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246658001",
"Comment": "qt5-quickcontrols is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246658002",
"Comment": "qt5-quickcontrols-common is earlier than 0:5.15.13-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246658003",
"Comment": "qt5-quickcontrols-doc is earlier than 0:5.15.13-alt1"
}
]
}
]
}
}
]
}

46
oval/p10/ALT-PU-2024-6658/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246658001",
"Version": "1",
"Comment": "qt5-quickcontrols is installed",
"Name": "qt5-quickcontrols"
},
{
"ID": "oval:org.altlinux.errata:obj:20246658002",
"Version": "1",
"Comment": "qt5-quickcontrols-common is installed",
"Name": "qt5-quickcontrols-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20246658003",
"Version": "1",
"Comment": "qt5-quickcontrols-doc is installed",
"Name": "qt5-quickcontrols-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6658/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246658001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.15.13-alt1",
"Arch": {},
"EVR": {
"Text": "0:5.15.13-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/p10/ALT-PU-2024-6658/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246658001",
"Version": "1",
"Check": "all",
"Comment": "qt5-quickcontrols is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246658001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246658001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246658002",
"Version": "1",
"Check": "all",
"Comment": "qt5-quickcontrols-common is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246658002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246658001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246658003",
"Version": "1",
"Check": "all",
"Comment": "qt5-quickcontrols-doc is earlier than 0:5.15.13-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246658003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246658001"
}
}
]
}

Some files were not shown because too many files have changed in this diff Show More