diff --git a/oval/c9f2/ALT-PU-2021-3485/definitions.json b/oval/c9f2/ALT-PU-2021-3485/definitions.json index 82bfac9330..417e0c6ba9 100644 --- a/oval/c9f2/ALT-PU-2021-3485/definitions.json +++ b/oval/c9f2/ALT-PU-2021-3485/definitions.json @@ -88,8 +88,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/c9f2/ALT-PU-2022-1467/definitions.json b/oval/c9f2/ALT-PU-2022-1467/definitions.json index 8800f6530b..1594c39d86 100644 --- a/oval/c9f2/ALT-PU-2022-1467/definitions.json +++ b/oval/c9f2/ALT-PU-2022-1467/definitions.json @@ -153,7 +153,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/c9f2/ALT-PU-2022-2052/definitions.json b/oval/c9f2/ALT-PU-2022-2052/definitions.json index ceeeb906a3..80fb5f909d 100644 --- a/oval/c9f2/ALT-PU-2022-2052/definitions.json +++ b/oval/c9f2/ALT-PU-2022-2052/definitions.json @@ -231,9 +231,9 @@ "CveID": "BDU:2022-04315" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/c9f2/ALT-PU-2023-1378/definitions.json b/oval/c9f2/ALT-PU-2023-1378/definitions.json index d4fab03cb9..cff26ff7bc 100644 --- a/oval/c9f2/ALT-PU-2023-1378/definitions.json +++ b/oval/c9f2/ALT-PU-2023-1378/definitions.json @@ -213,8 +213,8 @@ "CveID": "BDU:2022-07508" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High", diff --git a/oval/p10/ALT-PU-2021-3341/definitions.json b/oval/p10/ALT-PU-2021-3341/definitions.json index 435e789ceb..8d3bf7e22c 100644 --- a/oval/p10/ALT-PU-2021-3341/definitions.json +++ b/oval/p10/ALT-PU-2021-3341/definitions.json @@ -63,8 +63,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/p10/ALT-PU-2021-3469/definitions.json b/oval/p10/ALT-PU-2021-3469/definitions.json index 29b6ee2afe..180523c944 100644 --- a/oval/p10/ALT-PU-2021-3469/definitions.json +++ b/oval/p10/ALT-PU-2021-3469/definitions.json @@ -83,8 +83,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/p10/ALT-PU-2021-3573/definitions.json b/oval/p10/ALT-PU-2021-3573/definitions.json index 9c4990b385..c054f31434 100644 --- a/oval/p10/ALT-PU-2021-3573/definitions.json +++ b/oval/p10/ALT-PU-2021-3573/definitions.json @@ -751,8 +751,8 @@ "CveID": "BDU:2021-03848" }, { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/p10/ALT-PU-2021-3660/definitions.json b/oval/p10/ALT-PU-2021-3660/definitions.json index daa4cb9d03..3996d8f0b9 100644 --- a/oval/p10/ALT-PU-2021-3660/definitions.json +++ b/oval/p10/ALT-PU-2021-3660/definitions.json @@ -303,8 +303,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/p10/ALT-PU-2022-1410/definitions.json b/oval/p10/ALT-PU-2022-1410/definitions.json index b8b4d4e7f0..abfb791da7 100644 --- a/oval/p10/ALT-PU-2022-1410/definitions.json +++ b/oval/p10/ALT-PU-2022-1410/definitions.json @@ -65,7 +65,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/p10/ALT-PU-2022-1411/definitions.json b/oval/p10/ALT-PU-2022-1411/definitions.json index 724ddba7b3..3b08d91fcc 100644 --- a/oval/p10/ALT-PU-2022-1411/definitions.json +++ b/oval/p10/ALT-PU-2022-1411/definitions.json @@ -65,7 +65,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/p10/ALT-PU-2022-1421/definitions.json b/oval/p10/ALT-PU-2022-1421/definitions.json index 794c02c5ef..07fcff681c 100644 --- a/oval/p10/ALT-PU-2022-1421/definitions.json +++ b/oval/p10/ALT-PU-2022-1421/definitions.json @@ -1582,8 +1582,8 @@ "CveID": "BDU:2021-03237" }, { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", @@ -2061,7 +2061,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/p10/ALT-PU-2022-1462/definitions.json b/oval/p10/ALT-PU-2022-1462/definitions.json index b840862306..fda4e48201 100644 --- a/oval/p10/ALT-PU-2022-1462/definitions.json +++ b/oval/p10/ALT-PU-2022-1462/definitions.json @@ -75,7 +75,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/p10/ALT-PU-2022-1540/definitions.json b/oval/p10/ALT-PU-2022-1540/definitions.json index 5e22e1c597..c1a99383b2 100644 --- a/oval/p10/ALT-PU-2022-1540/definitions.json +++ b/oval/p10/ALT-PU-2022-1540/definitions.json @@ -183,7 +183,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/p10/ALT-PU-2022-1826/definitions.json b/oval/p10/ALT-PU-2022-1826/definitions.json index e21afcef45..b0e3dbae88 100644 --- a/oval/p10/ALT-PU-2022-1826/definitions.json +++ b/oval/p10/ALT-PU-2022-1826/definitions.json @@ -82,9 +82,9 @@ "CveID": "BDU:2022-03059" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p10/ALT-PU-2022-1833/definitions.json b/oval/p10/ALT-PU-2022-1833/definitions.json index 5ed49d43a2..9af62f580f 100644 --- a/oval/p10/ALT-PU-2022-1833/definitions.json +++ b/oval/p10/ALT-PU-2022-1833/definitions.json @@ -202,9 +202,9 @@ "CveID": "BDU:2022-03059" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p10/ALT-PU-2022-1853/definitions.json b/oval/p10/ALT-PU-2022-1853/definitions.json index 367bb3c4e2..64cc8da614 100644 --- a/oval/p10/ALT-PU-2022-1853/definitions.json +++ b/oval/p10/ALT-PU-2022-1853/definitions.json @@ -145,9 +145,9 @@ "CveID": "BDU:2022-03059" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p10/ALT-PU-2022-1881/definitions.json b/oval/p10/ALT-PU-2022-1881/definitions.json index 310c19daf3..4930ca3729 100644 --- a/oval/p10/ALT-PU-2022-1881/definitions.json +++ b/oval/p10/ALT-PU-2022-1881/definitions.json @@ -159,9 +159,9 @@ "CveID": "BDU:2022-03059" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p10/ALT-PU-2022-2155/definitions.json b/oval/p10/ALT-PU-2022-2155/definitions.json index 31a8f9993e..c8db4fc8f3 100644 --- a/oval/p10/ALT-PU-2022-2155/definitions.json +++ b/oval/p10/ALT-PU-2022-2155/definitions.json @@ -1544,9 +1544,9 @@ "CveID": "BDU:2022-04393" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p10/ALT-PU-2022-2344/definitions.json b/oval/p10/ALT-PU-2022-2344/definitions.json index 3e6308777a..8ef481da19 100644 --- a/oval/p10/ALT-PU-2022-2344/definitions.json +++ b/oval/p10/ALT-PU-2022-2344/definitions.json @@ -178,9 +178,9 @@ "CveID": "BDU:2022-04244" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p10/ALT-PU-2022-3311/definitions.json b/oval/p10/ALT-PU-2022-3311/definitions.json index 0af542b979..85291ec52c 100644 --- a/oval/p10/ALT-PU-2022-3311/definitions.json +++ b/oval/p10/ALT-PU-2022-3311/definitions.json @@ -158,8 +158,8 @@ "CveID": "BDU:2022-07508" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High", diff --git a/oval/p10/ALT-PU-2022-3371/definitions.json b/oval/p10/ALT-PU-2022-3371/definitions.json index 420f533515..35046d1d6c 100644 --- a/oval/p10/ALT-PU-2022-3371/definitions.json +++ b/oval/p10/ALT-PU-2022-3371/definitions.json @@ -466,8 +466,8 @@ "CveID": "BDU:2022-07508" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High", diff --git a/oval/p10/ALT-PU-2023-1044/definitions.json b/oval/p10/ALT-PU-2023-1044/definitions.json index c39e00131d..50c918a914 100644 --- a/oval/p10/ALT-PU-2023-1044/definitions.json +++ b/oval/p10/ALT-PU-2023-1044/definitions.json @@ -218,8 +218,8 @@ "CveID": "BDU:2022-07508" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High", diff --git a/oval/p10/ALT-PU-2023-1066/definitions.json b/oval/p10/ALT-PU-2023-1066/definitions.json index 8b58fe2a40..34fd87a518 100644 --- a/oval/p10/ALT-PU-2023-1066/definitions.json +++ b/oval/p10/ALT-PU-2023-1066/definitions.json @@ -188,8 +188,8 @@ "CveID": "BDU:2022-07508" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High", diff --git a/oval/p10/ALT-PU-2023-1903/definitions.json b/oval/p10/ALT-PU-2023-1903/definitions.json index 197bd7de3e..0b5ca6ffd0 100644 --- a/oval/p10/ALT-PU-2023-1903/definitions.json +++ b/oval/p10/ALT-PU-2023-1903/definitions.json @@ -40613,11 +40613,11 @@ "CveID": "BDU:2023-00700" }, { - "Cvss": "AV:L/AC:H/Au:N/C:C/I:N/A:N", - "Cvss3": "AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", + "Cvss": "AV:N/AC:H/Au:N/C:C/I:N/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "Cwe": "CWE-610, CWE-662", "Href": "https://bdu.fstec.ru/vul/2023-00749", - "Impact": "Low", + "Impact": "High", "Public": "20230104", "CveID": "BDU:2023-00749" }, diff --git a/oval/p10/ALT-PU-2023-4282/definitions.json b/oval/p10/ALT-PU-2023-4282/definitions.json index 07e43e31ef..923b9cf6a8 100644 --- a/oval/p10/ALT-PU-2023-4282/definitions.json +++ b/oval/p10/ALT-PU-2023-4282/definitions.json @@ -2303,8 +2303,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", @@ -2512,7 +2512,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", @@ -3032,9 +3032,9 @@ "CveID": "BDU:2022-04878" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p10/ALT-PU-2023-4894/definitions.json b/oval/p10/ALT-PU-2023-4894/definitions.json index f18d1e30e4..7c86a5a867 100644 --- a/oval/p10/ALT-PU-2023-4894/definitions.json +++ b/oval/p10/ALT-PU-2023-4894/definitions.json @@ -2908,8 +2908,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", @@ -3844,9 +3844,9 @@ "CveID": "BDU:2022-04878" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", @@ -4600,8 +4600,8 @@ "CveID": "BDU:2022-07508" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High", @@ -4816,11 +4816,11 @@ "CveID": "BDU:2023-00747" }, { - "Cvss": "AV:L/AC:H/Au:N/C:C/I:N/A:N", - "Cvss3": "AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", + "Cvss": "AV:N/AC:H/Au:N/C:C/I:N/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "Cwe": "CWE-610, CWE-662", "Href": "https://bdu.fstec.ru/vul/2023-00749", - "Impact": "Low", + "Impact": "High", "Public": "20230104", "CveID": "BDU:2023-00749" }, diff --git a/oval/p10/ALT-PU-2023-7682/definitions.json b/oval/p10/ALT-PU-2023-7682/definitions.json index 7b1ae87195..5222dec594 100644 --- a/oval/p10/ALT-PU-2023-7682/definitions.json +++ b/oval/p10/ALT-PU-2023-7682/definitions.json @@ -470,8 +470,8 @@ "CveID": "BDU:2022-07508" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High", @@ -542,11 +542,11 @@ "CveID": "BDU:2023-00631" }, { - "Cvss": "AV:L/AC:H/Au:N/C:C/I:N/A:N", - "Cvss3": "AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", + "Cvss": "AV:N/AC:H/Au:N/C:C/I:N/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "Cwe": "CWE-610, CWE-662", "Href": "https://bdu.fstec.ru/vul/2023-00749", - "Impact": "Low", + "Impact": "High", "Public": "20230104", "CveID": "BDU:2023-00749" }, diff --git a/oval/p10/ALT-PU-2024-1541/definitions.json b/oval/p10/ALT-PU-2024-1541/definitions.json new file mode 100644 index 0000000000..c200b1349b --- /dev/null +++ b/oval/p10/ALT-PU-2024-1541/definitions.json @@ -0,0 +1,109 @@ +{ + "Definition": [ + { + "ID": "oval:org.altlinux.errata:def:20241541", + "Version": "oval:org.altlinux.errata:def:20241541", + "Class": "patch", + "Metadata": { + "Title": "ALT-PU-2024-1541: package `linuxcnc` update to version 2.9.2-alt1", + "AffectedList": [ + { + "Family": "unix", + "Platforms": [ + "ALT Linux branch p10" + ], + "Products": [ + "ALT Server", + "ALT Virtualization Server", + "ALT Workstation", + "ALT Workstation K", + "ALT Education", + "Simply Linux", + "Starterkit" + ] + } + ], + "References": [ + { + "RefID": "ALT-PU-2024-1541", + "RefURL": "https://errata.altlinux.org/ALT-PU-2024-1541", + "Source": "ALTPU" + } + ], + "Description": "This update upgrades linuxcnc to version 2.9.2-alt1. \nSecurity Fix(es):\n\n * #40376: linuxcnc 2.8.2 имеет ветку gtk3 с поддержкой python3", + "Advisory": { + "From": "errata.altlinux.org", + "Severity": "Low", + "Rights": "Copyright 2024 BaseALT Ltd.", + "Issued": { + "Date": "2024-02-15" + }, + "Updated": { + "Date": "2024-02-15" + }, + "bdu": null, + "Bugzilla": [ + { + "Id": "40376", + "Href": "https://bugzilla.altlinux.org/40376", + "Data": "linuxcnc 2.8.2 имеет ветку gtk3 с поддержкой python3" + } + ], + "AffectedCpeList": { + "Cpe": [ + "cpe:/o:alt:kworkstation:10", + "cpe:/o:alt:workstation:10", + "cpe:/o:alt:server:10", + "cpe:/o:alt:server-v:10", + "cpe:/o:alt:education:10", + "cpe:/o:alt:slinux:10", + "cpe:/o:alt:starterkit:p10", + "cpe:/o:alt:kworkstation:10.1", + "cpe:/o:alt:workstation:10.1", + "cpe:/o:alt:server:10.1", + "cpe:/o:alt:server-v:10.1", + "cpe:/o:alt:education:10.1", + "cpe:/o:alt:slinux:10.1", + "cpe:/o:alt:starterkit:10.1", + "cpe:/o:alt:kworkstation:10.2", + "cpe:/o:alt:workstation:10.2", + "cpe:/o:alt:server:10.2", + "cpe:/o:alt:server-v:10.2", + "cpe:/o:alt:education:10.2", + "cpe:/o:alt:slinux:10.2", + "cpe:/o:alt:starterkit:10.2" + ] + } + } + }, + "Criteria": { + "Operator": "AND", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:2001", + "Comment": "ALT Linux must be installed" + } + ], + "Criterias": [ + { + "Operator": "OR", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:20241541001", + "Comment": "liblinuxcnc is earlier than 0:2.9.2-alt1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20241541002", + "Comment": "liblinuxcnc-devel is earlier than 0:2.9.2-alt1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20241541003", + "Comment": "linuxcnc is earlier than 0:2.9.2-alt1" + } + ] + } + ] + } + } + ] +} \ No newline at end of file diff --git a/oval/p10/ALT-PU-2024-1541/objects.json b/oval/p10/ALT-PU-2024-1541/objects.json new file mode 100644 index 0000000000..06efd595e4 --- /dev/null +++ b/oval/p10/ALT-PU-2024-1541/objects.json @@ -0,0 +1,46 @@ +{ + "TextFileContent54Objects": [ + { + "ID": "oval:org.altlinux.errata:obj:2001", + "Version": "1", + "comment": "Evaluate `/etc/os-release` file content", + "Path": { + "dataType": "string", + "Text": "/etc" + }, + "Filepath": { + "Datatype": "string", + "Text": "os-release" + }, + "Pattern": { + "Datatype": "string", + "Operation": "pattern match", + "Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*" + }, + "Instance": { + "Datatype": "int", + "Text": "1" + } + } + ], + "RpmInfoObjects": [ + { + "ID": "oval:org.altlinux.errata:obj:20241541001", + "Version": "1", + "comment": "liblinuxcnc is installed", + "Name": "liblinuxcnc" + }, + { + "ID": "oval:org.altlinux.errata:obj:20241541002", + "Version": "1", + "comment": "liblinuxcnc-devel is installed", + "Name": "liblinuxcnc-devel" + }, + { + "ID": "oval:org.altlinux.errata:obj:20241541003", + "Version": "1", + "comment": "linuxcnc is installed", + "Name": "linuxcnc" + } + ] +} \ No newline at end of file diff --git a/oval/p10/ALT-PU-2024-1541/states.json b/oval/p10/ALT-PU-2024-1541/states.json new file mode 100644 index 0000000000..ca2ae2d6ab --- /dev/null +++ b/oval/p10/ALT-PU-2024-1541/states.json @@ -0,0 +1,23 @@ +{ + "TextFileContent54State": [ + { + "ID": "oval:org.altlinux.errata:ste:2001", + "Version": "1", + "Text": {} + } + ], + "RpmInfoState": [ + { + "ID": "oval:org.altlinux.errata:ste:20241541001", + "Version": "1", + "Comment": "package EVR is earlier than 0:2.9.2-alt1", + "Arch": {}, + "Evr": { + "Text": "0:2.9.2-alt1", + "Datatype": "evr_string", + "Operation": "less than" + }, + "Subexpression": {} + } + ] +} \ No newline at end of file diff --git a/oval/p10/ALT-PU-2024-1541/tests.json b/oval/p10/ALT-PU-2024-1541/tests.json new file mode 100644 index 0000000000..645898b658 --- /dev/null +++ b/oval/p10/ALT-PU-2024-1541/tests.json @@ -0,0 +1,54 @@ +{ + "TextFileContent54Tests": [ + { + "ID": "oval:org.altlinux.errata:tst:2001", + "Version": "1", + "Check": "all", + "Comment": "ALT Linux based on branch 'p10' must be installed", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:2001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:2001" + } + } + ], + "RPMInfoTests": [ + { + "ID": "oval:org.altlinux.errata:tst:20241541001", + "Version": "1", + "Check": "all", + "Comment": "liblinuxcnc is earlier than 0:2.9.2-alt1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20241541001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20241541001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20241541002", + "Version": "1", + "Check": "all", + "Comment": "liblinuxcnc-devel is earlier than 0:2.9.2-alt1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20241541002" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20241541001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20241541003", + "Version": "1", + "Check": "all", + "Comment": "linuxcnc is earlier than 0:2.9.2-alt1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20241541003" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20241541001" + } + } + ] +} \ No newline at end of file diff --git a/oval/p9/ALT-PU-2021-1869/definitions.json b/oval/p9/ALT-PU-2021-1869/definitions.json index 4bf2d4078d..c39e21c179 100644 --- a/oval/p9/ALT-PU-2021-1869/definitions.json +++ b/oval/p9/ALT-PU-2021-1869/definitions.json @@ -942,7 +942,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/p9/ALT-PU-2021-1896/definitions.json b/oval/p9/ALT-PU-2021-1896/definitions.json index 8fd92dee35..e88e67d65b 100644 --- a/oval/p9/ALT-PU-2021-1896/definitions.json +++ b/oval/p9/ALT-PU-2021-1896/definitions.json @@ -1044,7 +1044,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/p9/ALT-PU-2021-3333/definitions.json b/oval/p9/ALT-PU-2021-3333/definitions.json index d45dfb2566..c817b7b9fd 100644 --- a/oval/p9/ALT-PU-2021-3333/definitions.json +++ b/oval/p9/ALT-PU-2021-3333/definitions.json @@ -53,8 +53,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/p9/ALT-PU-2021-3337/definitions.json b/oval/p9/ALT-PU-2021-3337/definitions.json index 777a34f5ee..89b87d148c 100644 --- a/oval/p9/ALT-PU-2021-3337/definitions.json +++ b/oval/p9/ALT-PU-2021-3337/definitions.json @@ -63,8 +63,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/p9/ALT-PU-2022-1052/definitions.json b/oval/p9/ALT-PU-2022-1052/definitions.json index 7fbcba96fe..805ec3caf9 100644 --- a/oval/p9/ALT-PU-2022-1052/definitions.json +++ b/oval/p9/ALT-PU-2022-1052/definitions.json @@ -53,8 +53,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/p9/ALT-PU-2022-1054/definitions.json b/oval/p9/ALT-PU-2022-1054/definitions.json index 75525b215f..32e625aceb 100644 --- a/oval/p9/ALT-PU-2022-1054/definitions.json +++ b/oval/p9/ALT-PU-2022-1054/definitions.json @@ -73,8 +73,8 @@ }, "bdu": [ { - "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-362, CWE-416", "Href": "https://bdu.fstec.ru/vul/2021-03902", "Impact": "High", diff --git a/oval/p9/ALT-PU-2022-1413/definitions.json b/oval/p9/ALT-PU-2022-1413/definitions.json index 38a6844f72..c3a32d4449 100644 --- a/oval/p9/ALT-PU-2022-1413/definitions.json +++ b/oval/p9/ALT-PU-2022-1413/definitions.json @@ -65,7 +65,7 @@ { "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-281", + "Cwe": "CWE-281, CWE-665", "Href": "https://bdu.fstec.ru/vul/2022-01166", "Impact": "High", "Public": "20220307", diff --git a/oval/p9/ALT-PU-2022-1823/definitions.json b/oval/p9/ALT-PU-2022-1823/definitions.json index b287352cf1..290a3cef74 100644 --- a/oval/p9/ALT-PU-2022-1823/definitions.json +++ b/oval/p9/ALT-PU-2022-1823/definitions.json @@ -72,9 +72,9 @@ "CveID": "BDU:2022-03059" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p9/ALT-PU-2022-1824/definitions.json b/oval/p9/ALT-PU-2022-1824/definitions.json index e567af987e..8f5411c5ed 100644 --- a/oval/p9/ALT-PU-2022-1824/definitions.json +++ b/oval/p9/ALT-PU-2022-1824/definitions.json @@ -72,9 +72,9 @@ "CveID": "BDU:2022-03059" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", - "Cwe": "CWE-787", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-191, CWE-192, CWE-681, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-04995", "Impact": "High", "Public": "20220805", diff --git a/oval/p9/ALT-PU-2022-3284/definitions.json b/oval/p9/ALT-PU-2022-3284/definitions.json index 5ef2014b9e..d535062a6d 100644 --- a/oval/p9/ALT-PU-2022-3284/definitions.json +++ b/oval/p9/ALT-PU-2022-3284/definitions.json @@ -110,8 +110,8 @@ "CveID": "BDU:2022-07508" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High", diff --git a/oval/p9/ALT-PU-2022-3338/definitions.json b/oval/p9/ALT-PU-2022-3338/definitions.json index 11609975e6..bac416642c 100644 --- a/oval/p9/ALT-PU-2022-3338/definitions.json +++ b/oval/p9/ALT-PU-2022-3338/definitions.json @@ -72,8 +72,8 @@ "CveID": "BDU:2022-07074" }, { - "Cvss": "AV:L/AC:H/Au:S/C:C/I:C/A:C", - "Cvss3": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "Cwe": "CWE-281, CWE-401", "Href": "https://bdu.fstec.ru/vul/2023-00061", "Impact": "High",