ALT Vulnerability

2024-10-23 03:05:53 +00:00 · 2024-10-23 03:05:53 +00:00 · 575f9ea121
commit 575f9ea121
parent c267aea95b
28 changed files with 5875 additions and 0 deletions
--- a/oval/c10f1/ALT-PU-2024-14035/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-14035/definitions.json
--- a/oval/c10f1/ALT-PU-2024-14035/objects.json
+++ b/oval/c10f1/ALT-PU-2024-14035/objects.json
@ -0,0 +1,40 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414035001",
+      "Version": "1",
+      "Comment": "firefox is installed",
+      "Name": "firefox"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414035002",
+      "Version": "1",
+      "Comment": "firefox-config-privacy is installed",
+      "Name": "firefox-config-privacy"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14035/states.json
+++ b/oval/c10f1/ALT-PU-2024-14035/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414035001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:118.0.2-alt0.p10.1",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:118.0.2-alt0.p10.1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14035/tests.json
+++ b/oval/c10f1/ALT-PU-2024-14035/tests.json
@ -0,0 +1,42 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414035001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "firefox is earlier than 0:118.0.2-alt0.p10.1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414035001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414035001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414035002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "firefox-config-privacy is earlier than 0:118.0.2-alt0.p10.1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414035002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414035001"
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14318/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-14318/definitions.json
@ -0,0 +1,260 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202414318",
+      "Version": "oval:org.altlinux.errata:def:202414318",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-14318: package `erlang` update to version 26.2.5.3-alt1",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-14318",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-14318",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "BDU:2023-08853",
+            "RefURL": "https://bdu.fstec.ru/vul/2023-08853",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "CVE-2023-48795",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades erlang to version 26.2.5.3-alt1. \nSecurity Fix(es):\n\n * BDU:2023-08853: Уязвимость реализации протокола SSH, связанная с возможностью откорректировать порядковые номера пакетов в процессе согласования соединения и добиться удаления произвольного числа служебных SSH-сообщений, позволяющая нарушителю обойти проверки целостности, отключить существующие функции безопасности, получить несанкционированный доступ к защищаемой информации\n\n * CVE-2023-48795: The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-10-22"
+          },
+          "Updated": {
+            "Date": "2024-10-22"
+          },
+          "BDUs": [
+            {
+              "ID": "BDU:2023-08853",
+              "CVSS": "AV:N/AC:H/Au:N/C:C/I:C/A:N",
+              "CVSS3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
+              "CWE": "CWE-222",
+              "Href": "https://bdu.fstec.ru/vul/2023-08853",
+              "Impact": "High",
+              "Public": "20231218"
+            }
+          ],
+          "CVEs": [
+            {
+              "ID": "CVE-2023-48795",
+              "CVSS3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
+              "CWE": "CWE-354",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
+              "Impact": "Low",
+              "Public": "20231218"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318001",
+                "Comment": "erlang is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318002",
+                "Comment": "erlang-common_test is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318003",
+                "Comment": "erlang-common_test-bin is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318004",
+                "Comment": "erlang-common_test-common is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318005",
+                "Comment": "erlang-common_test-debug is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318006",
+                "Comment": "erlang-common_test-devel is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318007",
+                "Comment": "erlang-common_test-native is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318008",
+                "Comment": "erlang-devel is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318009",
+                "Comment": "erlang-doc is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318010",
+                "Comment": "erlang-doc-chunks is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318011",
+                "Comment": "erlang-doc-html is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318012",
+                "Comment": "erlang-doc-pdf is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318013",
+                "Comment": "erlang-emacs is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318014",
+                "Comment": "erlang-examples is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318015",
+                "Comment": "erlang-full is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318016",
+                "Comment": "erlang-jinterface is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318017",
+                "Comment": "erlang-jinterface-debug is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318018",
+                "Comment": "erlang-jinterface-native is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318019",
+                "Comment": "erlang-man is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318020",
+                "Comment": "erlang-megaco is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318021",
+                "Comment": "erlang-megaco-debug is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318022",
+                "Comment": "erlang-megaco-devel is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318023",
+                "Comment": "erlang-megaco-drivers is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318024",
+                "Comment": "erlang-megaco-native is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318025",
+                "Comment": "erlang-odbc is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318026",
+                "Comment": "erlang-odbc-debug is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318027",
+                "Comment": "erlang-odbc-devel is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318028",
+                "Comment": "erlang-odbc-native is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318029",
+                "Comment": "erlang-odbc-server is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318030",
+                "Comment": "erlang-otp is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318031",
+                "Comment": "erlang-otp-bin is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318032",
+                "Comment": "erlang-otp-common is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318033",
+                "Comment": "erlang-otp-debug is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318034",
+                "Comment": "erlang-otp-devel is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318035",
+                "Comment": "erlang-otp-full is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318036",
+                "Comment": "erlang-otp-native is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318037",
+                "Comment": "erlang-visual is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318038",
+                "Comment": "erlang-visual-common is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318039",
+                "Comment": "erlang-visual-debug is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318040",
+                "Comment": "erlang-visual-devel is earlier than 1:26.2.5.3-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414318041",
+                "Comment": "erlang-visual-native is earlier than 1:26.2.5.3-alt1"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14318/objects.json
+++ b/oval/c10f1/ALT-PU-2024-14318/objects.json
@ -0,0 +1,274 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318001",
+      "Version": "1",
+      "Comment": "erlang is installed",
+      "Name": "erlang"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318002",
+      "Version": "1",
+      "Comment": "erlang-common_test is installed",
+      "Name": "erlang-common_test"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318003",
+      "Version": "1",
+      "Comment": "erlang-common_test-bin is installed",
+      "Name": "erlang-common_test-bin"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318004",
+      "Version": "1",
+      "Comment": "erlang-common_test-common is installed",
+      "Name": "erlang-common_test-common"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318005",
+      "Version": "1",
+      "Comment": "erlang-common_test-debug is installed",
+      "Name": "erlang-common_test-debug"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318006",
+      "Version": "1",
+      "Comment": "erlang-common_test-devel is installed",
+      "Name": "erlang-common_test-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318007",
+      "Version": "1",
+      "Comment": "erlang-common_test-native is installed",
+      "Name": "erlang-common_test-native"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318008",
+      "Version": "1",
+      "Comment": "erlang-devel is installed",
+      "Name": "erlang-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318009",
+      "Version": "1",
+      "Comment": "erlang-doc is installed",
+      "Name": "erlang-doc"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318010",
+      "Version": "1",
+      "Comment": "erlang-doc-chunks is installed",
+      "Name": "erlang-doc-chunks"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318011",
+      "Version": "1",
+      "Comment": "erlang-doc-html is installed",
+      "Name": "erlang-doc-html"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318012",
+      "Version": "1",
+      "Comment": "erlang-doc-pdf is installed",
+      "Name": "erlang-doc-pdf"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318013",
+      "Version": "1",
+      "Comment": "erlang-emacs is installed",
+      "Name": "erlang-emacs"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318014",
+      "Version": "1",
+      "Comment": "erlang-examples is installed",
+      "Name": "erlang-examples"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318015",
+      "Version": "1",
+      "Comment": "erlang-full is installed",
+      "Name": "erlang-full"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318016",
+      "Version": "1",
+      "Comment": "erlang-jinterface is installed",
+      "Name": "erlang-jinterface"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318017",
+      "Version": "1",
+      "Comment": "erlang-jinterface-debug is installed",
+      "Name": "erlang-jinterface-debug"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318018",
+      "Version": "1",
+      "Comment": "erlang-jinterface-native is installed",
+      "Name": "erlang-jinterface-native"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318019",
+      "Version": "1",
+      "Comment": "erlang-man is installed",
+      "Name": "erlang-man"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318020",
+      "Version": "1",
+      "Comment": "erlang-megaco is installed",
+      "Name": "erlang-megaco"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318021",
+      "Version": "1",
+      "Comment": "erlang-megaco-debug is installed",
+      "Name": "erlang-megaco-debug"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318022",
+      "Version": "1",
+      "Comment": "erlang-megaco-devel is installed",
+      "Name": "erlang-megaco-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318023",
+      "Version": "1",
+      "Comment": "erlang-megaco-drivers is installed",
+      "Name": "erlang-megaco-drivers"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318024",
+      "Version": "1",
+      "Comment": "erlang-megaco-native is installed",
+      "Name": "erlang-megaco-native"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318025",
+      "Version": "1",
+      "Comment": "erlang-odbc is installed",
+      "Name": "erlang-odbc"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318026",
+      "Version": "1",
+      "Comment": "erlang-odbc-debug is installed",
+      "Name": "erlang-odbc-debug"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318027",
+      "Version": "1",
+      "Comment": "erlang-odbc-devel is installed",
+      "Name": "erlang-odbc-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318028",
+      "Version": "1",
+      "Comment": "erlang-odbc-native is installed",
+      "Name": "erlang-odbc-native"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318029",
+      "Version": "1",
+      "Comment": "erlang-odbc-server is installed",
+      "Name": "erlang-odbc-server"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318030",
+      "Version": "1",
+      "Comment": "erlang-otp is installed",
+      "Name": "erlang-otp"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318031",
+      "Version": "1",
+      "Comment": "erlang-otp-bin is installed",
+      "Name": "erlang-otp-bin"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318032",
+      "Version": "1",
+      "Comment": "erlang-otp-common is installed",
+      "Name": "erlang-otp-common"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318033",
+      "Version": "1",
+      "Comment": "erlang-otp-debug is installed",
+      "Name": "erlang-otp-debug"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318034",
+      "Version": "1",
+      "Comment": "erlang-otp-devel is installed",
+      "Name": "erlang-otp-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318035",
+      "Version": "1",
+      "Comment": "erlang-otp-full is installed",
+      "Name": "erlang-otp-full"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318036",
+      "Version": "1",
+      "Comment": "erlang-otp-native is installed",
+      "Name": "erlang-otp-native"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318037",
+      "Version": "1",
+      "Comment": "erlang-visual is installed",
+      "Name": "erlang-visual"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318038",
+      "Version": "1",
+      "Comment": "erlang-visual-common is installed",
+      "Name": "erlang-visual-common"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318039",
+      "Version": "1",
+      "Comment": "erlang-visual-debug is installed",
+      "Name": "erlang-visual-debug"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318040",
+      "Version": "1",
+      "Comment": "erlang-visual-devel is installed",
+      "Name": "erlang-visual-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414318041",
+      "Version": "1",
+      "Comment": "erlang-visual-native is installed",
+      "Name": "erlang-visual-native"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14318/states.json
+++ b/oval/c10f1/ALT-PU-2024-14318/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414318001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 1:26.2.5.3-alt1",
+      "Arch": {},
+      "EVR": {
+        "Text": "1:26.2.5.3-alt1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14318/tests.json
+++ b/oval/c10f1/ALT-PU-2024-14318/tests.json
@ -0,0 +1,510 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-common_test is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-common_test-bin is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318004",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-common_test-common is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318004"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318005",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-common_test-debug is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318005"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318006",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-common_test-devel is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318006"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318007",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-common_test-native is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318007"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318008",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-devel is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318008"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318009",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-doc is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318009"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318010",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-doc-chunks is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318010"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318011",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-doc-html is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318011"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318012",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-doc-pdf is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318012"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318013",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-emacs is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318013"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318014",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-examples is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318014"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318015",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-full is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318015"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318016",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-jinterface is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318016"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318017",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-jinterface-debug is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318017"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318018",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-jinterface-native is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318018"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318019",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-man is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318019"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318020",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-megaco is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318020"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318021",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-megaco-debug is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318021"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318022",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-megaco-devel is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318022"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318023",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-megaco-drivers is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318023"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318024",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-megaco-native is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318024"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318025",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-odbc is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318025"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318026",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-odbc-debug is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318026"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318027",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-odbc-devel is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318027"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318028",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-odbc-native is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318028"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318029",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-odbc-server is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318029"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318030",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-otp is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318030"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318031",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-otp-bin is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318031"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318032",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-otp-common is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318032"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318033",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-otp-debug is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318033"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318034",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-otp-devel is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318034"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318035",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-otp-full is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318035"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318036",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-otp-native is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318036"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318037",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-visual is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318037"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318038",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-visual-common is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318038"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318039",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-visual-debug is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318039"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318040",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-visual-devel is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318040"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414318041",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "erlang-visual-native is earlier than 1:26.2.5.3-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414318041"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414318001"
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14331/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-14331/definitions.json
@ -0,0 +1,77 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202414331",
+      "Version": "oval:org.altlinux.errata:def:202414331",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-14331: package `ejabberd` update to version 21.12-alt4",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-14331",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-14331",
+            "Source": "ALTPU"
+          }
+        ],
+        "Description": "This update upgrades ejabberd to version 21.12-alt4. \nSecurity Fix(es):\n\n * #51259: Не запускается ejabberd.service",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "Low",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-10-22"
+          },
+          "Updated": {
+            "Date": "2024-10-22"
+          },
+          "BDUs": null,
+          "Bugzilla": [
+            {
+              "ID": "51259",
+              "Href": "https://bugzilla.altlinux.org/51259",
+              "Data": "Не запускается ejabberd.service"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414331001",
+                "Comment": "ejabberd is earlier than 0:21.12-alt4"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14331/objects.json
+++ b/oval/c10f1/ALT-PU-2024-14331/objects.json
@ -0,0 +1,34 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414331001",
+      "Version": "1",
+      "Comment": "ejabberd is installed",
+      "Name": "ejabberd"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14331/states.json
+++ b/oval/c10f1/ALT-PU-2024-14331/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414331001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:21.12-alt4",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:21.12-alt4",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14331/tests.json
+++ b/oval/c10f1/ALT-PU-2024-14331/tests.json
@ -0,0 +1,30 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414331001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ejabberd is earlier than 0:21.12-alt4",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414331001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414331001"
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14442/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-14442/definitions.json
--- a/oval/c10f1/ALT-PU-2024-14442/objects.json
+++ b/oval/c10f1/ALT-PU-2024-14442/objects.json
@ -0,0 +1,46 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414442001",
+      "Version": "1",
+      "Comment": "firefox-esr is installed",
+      "Name": "firefox-esr"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414442002",
+      "Version": "1",
+      "Comment": "firefox-esr-config-privacy is installed",
+      "Name": "firefox-esr-config-privacy"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414442003",
+      "Version": "1",
+      "Comment": "firefox-esr-wayland is installed",
+      "Name": "firefox-esr-wayland"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14442/states.json
+++ b/oval/c10f1/ALT-PU-2024-14442/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414442001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:115.11.0-alt0.c10.1",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:115.11.0-alt0.c10.1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-14442/tests.json
+++ b/oval/c10f1/ALT-PU-2024-14442/tests.json
@ -0,0 +1,54 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414442001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "firefox-esr is earlier than 0:115.11.0-alt0.c10.1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414442001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414442001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414442002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "firefox-esr-config-privacy is earlier than 0:115.11.0-alt0.c10.1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414442002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414442001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414442003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "firefox-esr-wayland is earlier than 0:115.11.0-alt0.c10.1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414442003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414442001"
+      }
+    }
+  ]
+}
--- a/oval/c9f2/ALT-PU-2024-12541/definitions.json
+++ b/oval/c9f2/ALT-PU-2024-12541/definitions.json
--- a/oval/c9f2/ALT-PU-2024-12541/objects.json
+++ b/oval/c9f2/ALT-PU-2024-12541/objects.json
@ -0,0 +1,94 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:3001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d\\.\\d)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541001",
+      "Version": "1",
+      "Comment": "kernel-doc-std is installed",
+      "Name": "kernel-doc-std"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541002",
+      "Version": "1",
+      "Comment": "kernel-headers-modules-std-def is installed",
+      "Name": "kernel-headers-modules-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541003",
+      "Version": "1",
+      "Comment": "kernel-headers-std-def is installed",
+      "Name": "kernel-headers-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541004",
+      "Version": "1",
+      "Comment": "kernel-image-domU-std-def is installed",
+      "Name": "kernel-image-domU-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541005",
+      "Version": "1",
+      "Comment": "kernel-image-std-def is installed",
+      "Name": "kernel-image-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541006",
+      "Version": "1",
+      "Comment": "kernel-modules-drm-ancient-std-def is installed",
+      "Name": "kernel-modules-drm-ancient-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541007",
+      "Version": "1",
+      "Comment": "kernel-modules-drm-nouveau-std-def is installed",
+      "Name": "kernel-modules-drm-nouveau-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541008",
+      "Version": "1",
+      "Comment": "kernel-modules-drm-std-def is installed",
+      "Name": "kernel-modules-drm-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541009",
+      "Version": "1",
+      "Comment": "kernel-modules-ide-std-def is installed",
+      "Name": "kernel-modules-ide-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541010",
+      "Version": "1",
+      "Comment": "kernel-modules-midgard-be-m1000-std-def is installed",
+      "Name": "kernel-modules-midgard-be-m1000-std-def"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202412541011",
+      "Version": "1",
+      "Comment": "kernel-modules-staging-std-def is installed",
+      "Name": "kernel-modules-staging-std-def"
+    }
+  ]
+}
--- a/oval/c9f2/ALT-PU-2024-12541/states.json
+++ b/oval/c9f2/ALT-PU-2024-12541/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:3001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202412541001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 2:5.10.226-alt0.c9f.2",
+      "Arch": {},
+      "EVR": {
+        "Text": "2:5.10.226-alt0.c9f.2",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c9f2/ALT-PU-2024-12541/tests.json
+++ b/oval/c9f2/ALT-PU-2024-12541/tests.json
@ -0,0 +1,150 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:3001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c9f2' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:3001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:3001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-doc-std is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-headers-modules-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-headers-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541004",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-image-domU-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541004"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541005",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-image-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541005"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541006",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-modules-drm-ancient-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541006"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541007",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-modules-drm-nouveau-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541007"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541008",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-modules-drm-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541008"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541009",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-modules-ide-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541009"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541010",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-modules-midgard-be-m1000-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541010"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202412541011",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "kernel-modules-staging-std-def is earlier than 2:5.10.226-alt0.c9f.2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202412541011"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202412541001"
+      }
+    }
+  ]
+}
--- a/oval/c9f2/ALT-PU-2024-14308/definitions.json
+++ b/oval/c9f2/ALT-PU-2024-14308/definitions.json
@ -0,0 +1,97 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202414308",
+      "Version": "oval:org.altlinux.errata:def:202414308",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-14308: package `xz` update to version 5.4.5-alt1",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c9f2"
+            ],
+            "Products": [
+              "ALT SPWorkstation",
+              "ALT SPServer"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-14308",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-14308",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "CVE-2022-1271",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2022-1271",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades xz to version 5.4.5-alt1. \nSecurity Fix(es):\n\n * CVE-2022-1271: An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example, a crafted file name), this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation when processing filenames with two or more newlines where selected content and the target file names are embedded in crafted multi-line file names. This flaw allows a remote, low privileged attacker to force zgrep to write arbitrary files on the system.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-10-22"
+          },
+          "Updated": {
+            "Date": "2024-10-22"
+          },
+          "BDUs": null,
+          "CVEs": [
+            {
+              "ID": "CVE-2022-1271",
+              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-20",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2022-1271",
+              "Impact": "High",
+              "Public": "20220831"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:8.4",
+              "cpe:/o:alt:spserver:8.4"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:3001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414308001",
+                "Comment": "liblzma is earlier than 0:5.4.5-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414308002",
+                "Comment": "liblzma-devel is earlier than 0:5.4.5-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414308003",
+                "Comment": "liblzma-devel-static is earlier than 0:5.4.5-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414308004",
+                "Comment": "xz is earlier than 0:5.4.5-alt1"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c9f2/ALT-PU-2024-14308/objects.json
+++ b/oval/c9f2/ALT-PU-2024-14308/objects.json
@ -0,0 +1,52 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:3001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d\\.\\d)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414308001",
+      "Version": "1",
+      "Comment": "liblzma is installed",
+      "Name": "liblzma"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414308002",
+      "Version": "1",
+      "Comment": "liblzma-devel is installed",
+      "Name": "liblzma-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414308003",
+      "Version": "1",
+      "Comment": "liblzma-devel-static is installed",
+      "Name": "liblzma-devel-static"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414308004",
+      "Version": "1",
+      "Comment": "xz is installed",
+      "Name": "xz"
+    }
+  ]
+}
--- a/oval/c9f2/ALT-PU-2024-14308/states.json
+++ b/oval/c9f2/ALT-PU-2024-14308/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:3001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414308001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:5.4.5-alt1",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:5.4.5-alt1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c9f2/ALT-PU-2024-14308/tests.json
+++ b/oval/c9f2/ALT-PU-2024-14308/tests.json
@ -0,0 +1,66 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:3001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c9f2' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:3001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:3001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414308001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "liblzma is earlier than 0:5.4.5-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414308001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414308001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414308002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "liblzma-devel is earlier than 0:5.4.5-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414308002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414308001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414308003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "liblzma-devel-static is earlier than 0:5.4.5-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414308003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414308001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414308004",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xz is earlier than 0:5.4.5-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414308004"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414308001"
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14147/definitions.json
+++ b/oval/p10/ALT-PU-2024-14147/definitions.json
@ -0,0 +1,133 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202414147",
+      "Version": "oval:org.altlinux.errata:def:202414147",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-14147: package `openvpn-gostcrypto` update to version 2.4.9-alt4",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch p10"
+            ],
+            "Products": [
+              "ALT Server",
+              "ALT Virtualization Server",
+              "ALT Workstation",
+              "ALT Workstation K",
+              "ALT Education",
+              "Simply Linux",
+              "Starterkit"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-14147",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-14147",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "BDU:2021-02221",
+            "RefURL": "https://bdu.fstec.ru/vul/2021-02221",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "CVE-2020-15078",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2020-15078",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades openvpn-gostcrypto to version 2.4.9-alt4. \nSecurity Fix(es):\n\n * BDU:2021-02221: Уязвимость функции отложенной аутентификации  deferred_auth программного обеспечения OpenVPN, позволяющая нарушителю вынудить сервер вернуть сообщение PUSH_REPLY c данными о настройках VPN до отправки сообщения AUTH_FAILED\n\n * CVE-2020-15078: OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-10-22"
+          },
+          "Updated": {
+            "Date": "2024-10-22"
+          },
+          "BDUs": [
+            {
+              "ID": "BDU:2021-02221",
+              "CVSS": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
+              "CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
+              "CWE": "CWE-305",
+              "Href": "https://bdu.fstec.ru/vul/2021-02221",
+              "Impact": "Low",
+              "Public": "20210422"
+            }
+          ],
+          "CVEs": [
+            {
+              "ID": "CVE-2020-15078",
+              "CVSS": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
+              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+              "CWE": "CWE-306",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2020-15078",
+              "Impact": "High",
+              "Public": "20210426"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:kworkstation:10",
+              "cpe:/o:alt:workstation:10",
+              "cpe:/o:alt:server:10",
+              "cpe:/o:alt:server-v:10",
+              "cpe:/o:alt:education:10",
+              "cpe:/o:alt:slinux:10",
+              "cpe:/o:alt:starterkit:p10",
+              "cpe:/o:alt:kworkstation:10.1",
+              "cpe:/o:alt:workstation:10.1",
+              "cpe:/o:alt:server:10.1",
+              "cpe:/o:alt:server-v:10.1",
+              "cpe:/o:alt:education:10.1",
+              "cpe:/o:alt:slinux:10.1",
+              "cpe:/o:alt:starterkit:10.1",
+              "cpe:/o:alt:kworkstation:10.2",
+              "cpe:/o:alt:workstation:10.2",
+              "cpe:/o:alt:server:10.2",
+              "cpe:/o:alt:server-v:10.2",
+              "cpe:/o:alt:education:10.2",
+              "cpe:/o:alt:slinux:10.2",
+              "cpe:/o:alt:starterkit:10.2"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:2001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414147001",
+                "Comment": "openvpn-docs-gostcrypto is earlier than 0:2.4.9-alt4"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414147002",
+                "Comment": "openvpn-gostcrypto is earlier than 0:2.4.9-alt4"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414147003",
+                "Comment": "openvpn-plugins-gostcrypto is earlier than 0:2.4.9-alt4"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14147/objects.json
+++ b/oval/p10/ALT-PU-2024-14147/objects.json
@ -0,0 +1,46 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:2001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414147001",
+      "Version": "1",
+      "Comment": "openvpn-docs-gostcrypto is installed",
+      "Name": "openvpn-docs-gostcrypto"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414147002",
+      "Version": "1",
+      "Comment": "openvpn-gostcrypto is installed",
+      "Name": "openvpn-gostcrypto"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414147003",
+      "Version": "1",
+      "Comment": "openvpn-plugins-gostcrypto is installed",
+      "Name": "openvpn-plugins-gostcrypto"
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14147/states.json
+++ b/oval/p10/ALT-PU-2024-14147/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:2001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414147001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:2.4.9-alt4",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:2.4.9-alt4",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14147/tests.json
+++ b/oval/p10/ALT-PU-2024-14147/tests.json
@ -0,0 +1,54 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:2001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'p10' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:2001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:2001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414147001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "openvpn-docs-gostcrypto is earlier than 0:2.4.9-alt4",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414147001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414147001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414147002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "openvpn-gostcrypto is earlier than 0:2.4.9-alt4",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414147002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414147001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414147003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "openvpn-plugins-gostcrypto is earlier than 0:2.4.9-alt4",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414147003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414147001"
+      }
+    }
+  ]
+}