pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ALT Vulnerability

Browse Source
This commit is contained in:
Иван Пепеляев 2024-07-20 03:04:49 +00:00
parent 6544047899
commit 4048d5433e
24 changed files with 1846 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

127
oval/c10f1/ALT-PU-2024-9718/definitions.json Normal file
View File

@ -0,0 +1,127 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20249718",
"Version": "oval:org.altlinux.errata:def:20249718",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-9718: package `yandex-browser-stable` update to version 24.4.3.1111-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-9718",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-9718",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-03604",
"RefURL": "https://bdu.fstec.ru/vul/2024-03604",
"Source": "BDU"
},
{
"RefID": "BDU:2024-03978",
"RefURL": "https://bdu.fstec.ru/vul/2024-03978",
"Source": "BDU"
},
{
"RefID": "CVE-2024-4671",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-4671",
"Source": "CVE"
},
{
"RefID": "CVE-2024-4947",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-4947",
"Source": "CVE"
}
],
"Description": "This update upgrades yandex-browser-stable to version 24.4.3.1111-alt1. \nSecurity Fix(es):\n\n * BDU:2024-03604: Уязвимость компонента Visuals браузера Google Chrome, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2024-03978: Уязвимость обработчика JavaScript-сценариев V8 браузера Google Chrome, позволяющая нарушителю выполнить произвольный код\n\n * CVE-2024-4671: Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)\n\n * CVE-2024-4947: Type Confusion in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-07-19"
},
"Updated": {
"Date": "2024-07-19"
},
"BDUs": [
{
"ID": "BDU:2024-03604",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2024-03604",
"Impact": "High",
"Public": "20240509"
},
{
"ID": "BDU:2024-03978",
"CVSS": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"CVSS3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"CWE": "CWE-843",
"Href": "https://bdu.fstec.ru/vul/2024-03978",
"Impact": "Low",
"Public": "20240515"
}
],
"CVEs": [
{
"ID": "CVE-2024-4671",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"CWE": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-4671",
"Impact": "Critical",
"Public": "20240514"
},
{
"ID": "CVE-2024-4947",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-843",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-4947",
"Impact": "High",
"Public": "20240515"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20249718001",
"Comment": "yandex-browser-stable is earlier than 0:24.4.3.1111-alt1"
}
]
}
]
}
}
]
}

34
oval/c10f1/ALT-PU-2024-9718/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20249718001",
"Version": "1",
"Comment": "yandex-browser-stable is installed",
"Name": "yandex-browser-stable"
}
]
}

23
oval/c10f1/ALT-PU-2024-9718/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20249718001",
"Version": "1",
"Comment": "package EVR is earlier than 0:24.4.3.1111-alt1",
"Arch": {},
"EVR": {
"Text": "0:24.4.3.1111-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c10f1/ALT-PU-2024-9718/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20249718001",
"Version": "1",
"Check": "all",
"Comment": "yandex-browser-stable is earlier than 0:24.4.3.1111-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249718001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249718001"
}
}
]
}

82
oval/c9f2/ALT-PU-2024-9586/definitions.json Normal file
View File

@ -0,0 +1,82 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20249586",
"Version": "oval:org.altlinux.errata:def:20249586",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-9586: package `python3-module-GitPython` update to version 3.1.42-alt0.c9f2.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c9f2"
],
"Products": [
"ALT SPWorkstation",
"ALT SPServer"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-9586",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-9586",
"Source": "ALTPU"
}
],
"Description": "This update upgrades python3-module-GitPython to version 3.1.42-alt0.c9f2.1. \nSecurity Fix(es):\n\n * #48252: [CVE] Прошу собрать версию 3.1.37\n\n * #49418: \u003e= 3.1.41",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-07-19"
},
"Updated": {
"Date": "2024-07-19"
},
"BDUs": null,
"Bugzilla": [
{
"ID": "48252",
"Href": "https://bugzilla.altlinux.org/48252",
"Data": "[CVE] Прошу собрать версию 3.1.37"
},
{
"ID": "49418",
"Href": "https://bugzilla.altlinux.org/49418",
"Data": "\u003e= 3.1.41"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:8.4",
"cpe:/o:alt:spserver:8.4"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:3001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20249586001",
"Comment": "python3-module-GitPython is earlier than 0:3.1.42-alt0.c9f2.1"
}
]
}
]
}
}
]
}

34
oval/c9f2/ALT-PU-2024-9586/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:3001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d\\.\\d)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20249586001",
"Version": "1",
"Comment": "python3-module-GitPython is installed",
"Name": "python3-module-GitPython"
}
]
}

23
oval/c9f2/ALT-PU-2024-9586/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:3001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20249586001",
"Version": "1",
"Comment": "package EVR is earlier than 0:3.1.42-alt0.c9f2.1",
"Arch": {},
"EVR": {
"Text": "0:3.1.42-alt0.c9f2.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c9f2/ALT-PU-2024-9586/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:3001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c9f2' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:3001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:3001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20249586001",
"Version": "1",
"Check": "all",
"Comment": "python3-module-GitPython is earlier than 0:3.1.42-alt0.c9f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249586001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249586001"
}
}
]
}

137
oval/p10/ALT-PU-2024-8934/definitions.json Normal file
View File

@ -0,0 +1,137 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20248934",
"Version": "oval:org.altlinux.errata:def:20248934",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-8934: package `hunspell` update to version 1.7.2-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-8934",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-8934",
"Source": "ALTPU"
},
{
"RefID": "BDU:2021-03393",
"RefURL": "https://bdu.fstec.ru/vul/2021-03393",
"Source": "BDU"
},
{
"RefID": "CVE-2019-16707",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-16707",
"Source": "CVE"
}
],
"Description": "This update upgrades hunspell to version 1.7.2-alt1. \nSecurity Fix(es):\n\n * BDU:2021-03393: Уязвимость функции SuggestMgr::leftcommonsubstring компонента suggestmgr.cxx программы для проверки правописания Hunspell, связанная с выходом операции за допустимые границы буфера данных, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2019-16707: Hunspell 1.7.0 has an invalid read operation in SuggestMgr::leftcommonsubstring in suggestmgr.cxx.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-07-19"
},
"Updated": {
"Date": "2024-07-19"
},
"BDUs": [
{
"ID": "BDU:2021-03393",
"CVSS": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"CVSS3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"CWE": "CWE-119",
"Href": "https://bdu.fstec.ru/vul/2021-03393",
"Impact": "Low",
"Public": "20190314"
}
],
"CVEs": [
{
"ID": "CVE-2019-16707",
"CVSS": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"CWE": "CWE-119",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-16707",
"Impact": "Low",
"Public": "20190923"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20248934001",
"Comment": "hunspell is earlier than 0:1.7.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20248934002",
"Comment": "hunspell-utils is earlier than 0:1.7.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20248934003",
"Comment": "libhunspell is earlier than 0:1.7.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20248934004",
"Comment": "libhunspell-devel is earlier than 0:1.7.2-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-8934/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20248934001",
"Version": "1",
"Comment": "hunspell is installed",
"Name": "hunspell"
},
{
"ID": "oval:org.altlinux.errata:obj:20248934002",
"Version": "1",
"Comment": "hunspell-utils is installed",
"Name": "hunspell-utils"
},
{
"ID": "oval:org.altlinux.errata:obj:20248934003",
"Version": "1",
"Comment": "libhunspell is installed",
"Name": "libhunspell"
},
{
"ID": "oval:org.altlinux.errata:obj:20248934004",
"Version": "1",
"Comment": "libhunspell-devel is installed",
"Name": "libhunspell-devel"
}
]
}

23
oval/p10/ALT-PU-2024-8934/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20248934001",
"Version": "1",
"Comment": "package EVR is earlier than 0:1.7.2-alt1",
"Arch": {},
"EVR": {
"Text": "0:1.7.2-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-8934/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20248934001",
"Version": "1",
"Check": "all",
"Comment": "hunspell is earlier than 0:1.7.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20248934001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20248934001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20248934002",
"Version": "1",
"Check": "all",
"Comment": "hunspell-utils is earlier than 0:1.7.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20248934002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20248934001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20248934003",
"Version": "1",
"Check": "all",
"Comment": "libhunspell is earlier than 0:1.7.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20248934003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20248934001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20248934004",
"Version": "1",
"Check": "all",
"Comment": "libhunspell-devel is earlier than 0:1.7.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20248934004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20248934001"
}
}
]
}

151
oval/p10/ALT-PU-2024-9716/definitions.json Normal file
View File

@ -0,0 +1,151 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20249716",
"Version": "oval:org.altlinux.errata:def:20249716",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-9716: package `yandex-browser-stable` update to version 24.4.3.1111-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-9716",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-9716",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-03604",
"RefURL": "https://bdu.fstec.ru/vul/2024-03604",
"Source": "BDU"
},
{
"RefID": "BDU:2024-03978",
"RefURL": "https://bdu.fstec.ru/vul/2024-03978",
"Source": "BDU"
},
{
"RefID": "CVE-2024-4671",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-4671",
"Source": "CVE"
},
{
"RefID": "CVE-2024-4947",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-4947",
"Source": "CVE"
}
],
"Description": "This update upgrades yandex-browser-stable to version 24.4.3.1111-alt1. \nSecurity Fix(es):\n\n * BDU:2024-03604: Уязвимость компонента Visuals браузера Google Chrome, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2024-03978: Уязвимость обработчика JavaScript-сценариев V8 браузера Google Chrome, позволяющая нарушителю выполнить произвольный код\n\n * CVE-2024-4671: Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)\n\n * CVE-2024-4947: Type Confusion in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-07-19"
},
"Updated": {
"Date": "2024-07-19"
},
"BDUs": [
{
"ID": "BDU:2024-03604",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2024-03604",
"Impact": "High",
"Public": "20240509"
},
{
"ID": "BDU:2024-03978",
"CVSS": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"CVSS3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"CWE": "CWE-843",
"Href": "https://bdu.fstec.ru/vul/2024-03978",
"Impact": "Low",
"Public": "20240515"
}
],
"CVEs": [
{
"ID": "CVE-2024-4671",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"CWE": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-4671",
"Impact": "Critical",
"Public": "20240514"
},
{
"ID": "CVE-2024-4947",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-843",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-4947",
"Impact": "High",
"Public": "20240515"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20249716001",
"Comment": "yandex-browser-stable is earlier than 0:24.4.3.1111-alt1"
}
]
}
]
}
}
]
}

34
oval/p10/ALT-PU-2024-9716/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20249716001",
"Version": "1",
"Comment": "yandex-browser-stable is installed",
"Name": "yandex-browser-stable"
}
]
}

23
oval/p10/ALT-PU-2024-9716/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20249716001",
"Version": "1",
"Comment": "package EVR is earlier than 0:24.4.3.1111-alt1",
"Arch": {},
"EVR": {
"Text": "0:24.4.3.1111-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/p10/ALT-PU-2024-9716/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20249716001",
"Version": "1",
"Check": "all",
"Comment": "yandex-browser-stable is earlier than 0:24.4.3.1111-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249716001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249716001"
}
}
]
}

157
oval/p10/ALT-PU-2024-9770/definitions.json Normal file
View File

@ -0,0 +1,157 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20249770",
"Version": "oval:org.altlinux.errata:def:20249770",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-9770: package `plasma5-workspace` update to version 5.27.11-alt9",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-9770",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-9770",
"Source": "ALTPU"
}
],
"Description": "This update upgrades plasma5-workspace to version 5.27.11-alt9. \nSecurity Fix(es):\n\n * #50522: Не меняется аватар пользователя из файла, если в имени файла есть \"{\" и \"}\"",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-07-19"
},
"Updated": {
"Date": "2024-07-19"
},
"BDUs": null,
"Bugzilla": [
{
"ID": "50522",
"Href": "https://bugzilla.altlinux.org/50522",
"Data": "Не меняется аватар пользователя из файла, если в имени файла есть \"{\" и \"}\""
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20249770001",
"Comment": "libcolorcorrect5 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770002",
"Comment": "libkfontinst5 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770003",
"Comment": "libkfontinstui5 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770004",
"Comment": "libkrdb5 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770005",
"Comment": "libkworkspace55 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770006",
"Comment": "libnotificationmanager1 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770007",
"Comment": "libplasma-geolocation-interface5 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770008",
"Comment": "libtaskmanager6 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770009",
"Comment": "libweather_ion7 is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770010",
"Comment": "plasma5-workspace is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770011",
"Comment": "plasma5-workspace-common is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770012",
"Comment": "plasma5-workspace-devel is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770013",
"Comment": "plasma5-workspace-qml is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770014",
"Comment": "polkit-kde-plasma-workspace is earlier than 1:5.27.11-alt9"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249770015",
"Comment": "sddm-theme-breeze is earlier than 1:5.27.11-alt9"
}
]
}
]
}
}
]
}

118
oval/p10/ALT-PU-2024-9770/objects.json Normal file
View File

@ -0,0 +1,118 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20249770001",
"Version": "1",
"Comment": "libcolorcorrect5 is installed",
"Name": "libcolorcorrect5"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770002",
"Version": "1",
"Comment": "libkfontinst5 is installed",
"Name": "libkfontinst5"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770003",
"Version": "1",
"Comment": "libkfontinstui5 is installed",
"Name": "libkfontinstui5"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770004",
"Version": "1",
"Comment": "libkrdb5 is installed",
"Name": "libkrdb5"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770005",
"Version": "1",
"Comment": "libkworkspace55 is installed",
"Name": "libkworkspace55"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770006",
"Version": "1",
"Comment": "libnotificationmanager1 is installed",
"Name": "libnotificationmanager1"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770007",
"Version": "1",
"Comment": "libplasma-geolocation-interface5 is installed",
"Name": "libplasma-geolocation-interface5"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770008",
"Version": "1",
"Comment": "libtaskmanager6 is installed",
"Name": "libtaskmanager6"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770009",
"Version": "1",
"Comment": "libweather_ion7 is installed",
"Name": "libweather_ion7"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770010",
"Version": "1",
"Comment": "plasma5-workspace is installed",
"Name": "plasma5-workspace"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770011",
"Version": "1",
"Comment": "plasma5-workspace-common is installed",
"Name": "plasma5-workspace-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770012",
"Version": "1",
"Comment": "plasma5-workspace-devel is installed",
"Name": "plasma5-workspace-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770013",
"Version": "1",
"Comment": "plasma5-workspace-qml is installed",
"Name": "plasma5-workspace-qml"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770014",
"Version": "1",
"Comment": "polkit-kde-plasma-workspace is installed",
"Name": "polkit-kde-plasma-workspace"
},
{
"ID": "oval:org.altlinux.errata:obj:20249770015",
"Version": "1",
"Comment": "sddm-theme-breeze is installed",
"Name": "sddm-theme-breeze"
}
]
}

23
oval/p10/ALT-PU-2024-9770/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20249770001",
"Version": "1",
"Comment": "package EVR is earlier than 1:5.27.11-alt9",
"Arch": {},
"EVR": {
"Text": "1:5.27.11-alt9",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

198
oval/p10/ALT-PU-2024-9770/tests.json Normal file
View File

@ -0,0 +1,198 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20249770001",
"Version": "1",
"Check": "all",
"Comment": "libcolorcorrect5 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770002",
"Version": "1",
"Check": "all",
"Comment": "libkfontinst5 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770003",
"Version": "1",
"Check": "all",
"Comment": "libkfontinstui5 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770004",
"Version": "1",
"Check": "all",
"Comment": "libkrdb5 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770005",
"Version": "1",
"Check": "all",
"Comment": "libkworkspace55 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770006",
"Version": "1",
"Check": "all",
"Comment": "libnotificationmanager1 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770007",
"Version": "1",
"Check": "all",
"Comment": "libplasma-geolocation-interface5 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770008",
"Version": "1",
"Check": "all",
"Comment": "libtaskmanager6 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770009",
"Version": "1",
"Check": "all",
"Comment": "libweather_ion7 is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770010",
"Version": "1",
"Check": "all",
"Comment": "plasma5-workspace is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770011",
"Version": "1",
"Check": "all",
"Comment": "plasma5-workspace-common is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770012",
"Version": "1",
"Check": "all",
"Comment": "plasma5-workspace-devel is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770013",
"Version": "1",
"Check": "all",
"Comment": "plasma5-workspace-qml is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770014",
"Version": "1",
"Check": "all",
"Comment": "polkit-kde-plasma-workspace is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770014"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249770015",
"Version": "1",
"Check": "all",
"Comment": "sddm-theme-breeze is earlier than 1:5.27.11-alt9",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249770015"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249770001"
}
}
]
}

166
oval/p10/ALT-PU-2024-9967/definitions.json Normal file
View File

@ -0,0 +1,166 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20249967",
"Version": "oval:org.altlinux.errata:def:20249967",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-9967: package `kernel-image-std-def` update to version 5.10.221-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-9967",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-9967",
"Source": "ALTPU"
},
{
"RefID": "CVE-2024-39482",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-39482",
"Source": "CVE"
},
{
"RefID": "CVE-2024-39484",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-39484",
"Source": "CVE"
}
],
"Description": "This update upgrades kernel-image-std-def to version 5.10.221-alt1. \nSecurity Fix(es):\n\n * CVE-2024-39482: In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: fix variable length array abuse in btree_iter\n\nbtree_iter is used in two ways: either allocated on the stack with a\nfixed size MAX_BSETS, or from a mempool with a dynamic size based on the\nspecific cache set. Previously, the struct had a fixed-length array of\nsize MAX_BSETS which was indexed out-of-bounds for the dynamically-sized\niterators, which causes UBSAN to complain.\n\nThis patch uses the same approach as in bcachefs's sort_iter and splits\nthe iterator into a btree_iter with a flexible array member and a\nbtree_iter_stack which embeds a btree_iter as well as a fixed-length\ndata array.\n\n * CVE-2024-39484: In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: davinci: Don't strip remove function when driver is builtin\n\nUsing __exit for the remove function results in the remove callback being\ndiscarded with CONFIG_MMC_DAVINCI=y. When such a device gets unbound (e.g.\nusing sysfs or hotplug), the driver is just removed without the cleanup\nbeing performed. This results in resource leaks. Fix it by compiling in the\nremove callback unconditionally.\n\nThis also fixes a W=1 modpost warning:\n\nWARNING: modpost: drivers/mmc/host/davinci_mmc: section mismatch in\nreference: davinci_mmcsd_driver+0x10 (section: .data) -\u003e\ndavinci_mmcsd_remove (section: .exit.text)",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-07-19"
},
"Updated": {
"Date": "2024-07-19"
},
"BDUs": null,
"CVEs": [
{
"ID": "CVE-2024-39482",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-770",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-39482",
"Impact": "Low",
"Public": "20240705"
},
{
"ID": "CVE-2024-39484",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-770",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-39484",
"Impact": "Low",
"Public": "20240705"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20249967001",
"Comment": "kernel-doc-std is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967002",
"Comment": "kernel-headers-modules-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967003",
"Comment": "kernel-headers-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967004",
"Comment": "kernel-image-domU-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967005",
"Comment": "kernel-image-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967006",
"Comment": "kernel-image-std-def-checkinstall is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967007",
"Comment": "kernel-modules-drm-ancient-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967008",
"Comment": "kernel-modules-drm-nouveau-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967009",
"Comment": "kernel-modules-drm-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967010",
"Comment": "kernel-modules-ide-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967011",
"Comment": "kernel-modules-midgard-be-m1000-std-def is earlier than 2:5.10.221-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20249967012",
"Comment": "kernel-modules-staging-std-def is earlier than 2:5.10.221-alt1"
}
]
}
]
}
}
]
}

100
oval/p10/ALT-PU-2024-9967/objects.json Normal file
View File

@ -0,0 +1,100 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20249967001",
"Version": "1",
"Comment": "kernel-doc-std is installed",
"Name": "kernel-doc-std"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967002",
"Version": "1",
"Comment": "kernel-headers-modules-std-def is installed",
"Name": "kernel-headers-modules-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967003",
"Version": "1",
"Comment": "kernel-headers-std-def is installed",
"Name": "kernel-headers-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967004",
"Version": "1",
"Comment": "kernel-image-domU-std-def is installed",
"Name": "kernel-image-domU-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967005",
"Version": "1",
"Comment": "kernel-image-std-def is installed",
"Name": "kernel-image-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967006",
"Version": "1",
"Comment": "kernel-image-std-def-checkinstall is installed",
"Name": "kernel-image-std-def-checkinstall"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967007",
"Version": "1",
"Comment": "kernel-modules-drm-ancient-std-def is installed",
"Name": "kernel-modules-drm-ancient-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967008",
"Version": "1",
"Comment": "kernel-modules-drm-nouveau-std-def is installed",
"Name": "kernel-modules-drm-nouveau-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967009",
"Version": "1",
"Comment": "kernel-modules-drm-std-def is installed",
"Name": "kernel-modules-drm-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967010",
"Version": "1",
"Comment": "kernel-modules-ide-std-def is installed",
"Name": "kernel-modules-ide-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967011",
"Version": "1",
"Comment": "kernel-modules-midgard-be-m1000-std-def is installed",
"Name": "kernel-modules-midgard-be-m1000-std-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20249967012",
"Version": "1",
"Comment": "kernel-modules-staging-std-def is installed",
"Name": "kernel-modules-staging-std-def"
}
]
}

23
oval/p10/ALT-PU-2024-9967/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20249967001",
"Version": "1",
"Comment": "package EVR is earlier than 2:5.10.221-alt1",
"Arch": {},
"EVR": {
"Text": "2:5.10.221-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

162
oval/p10/ALT-PU-2024-9967/tests.json Normal file
View File

@ -0,0 +1,162 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20249967001",
"Version": "1",
"Check": "all",
"Comment": "kernel-doc-std is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967002",
"Version": "1",
"Check": "all",
"Comment": "kernel-headers-modules-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967003",
"Version": "1",
"Check": "all",
"Comment": "kernel-headers-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967004",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-domU-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967005",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967006",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-std-def-checkinstall is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967007",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-ancient-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967008",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-nouveau-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967009",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967010",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-ide-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967011",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-midgard-be-m1000-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20249967012",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-staging-std-def is earlier than 2:5.10.221-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20249967012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20249967001"
}
}
]
}