pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ALT Vulnerability

Browse Source
This commit is contained in:
Иван Пепеляев 2024-03-05 21:02:18 +00:00
parent cd8ed55e1a
commit 75f66b4985
28 changed files with 2456 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

116
oval/c10f1/ALT-PU-2024-3086/definitions.json Normal file
View File

@ -0,0 +1,116 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20243086",
"Version": "oval:org.altlinux.errata:def:20243086",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-3086: package `bind` update to version 9.16.48-alt0.c10f2.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-3086",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-3086",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-01359",
"RefURL": "https://bdu.fstec.ru/vul/2024-01359",
"Source": "BDU"
},
{
"RefID": "CVE-2023-50387",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
"Source": "CVE"
}
],
"Description": "This update upgrades bind to version 9.16.48-alt0.c10f2.1. \nSecurity Fix(es):\n\n * BDU:2024-01359: Уязвимость компонента DNSSEC реализации протокола DNS сервера DNS BIND, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-50387: Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the \"KeyTrap\" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-03-05"
},
"Updated": {
"Date": "2024-03-05"
},
"bdu": [
{
"Cvss": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-400",
"Href": "https://bdu.fstec.ru/vul/2024-01359",
"Impact": "High",
"Public": "20240213",
"CveID": "BDU:2024-01359"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-770",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
"Impact": "High",
"Public": "20240214",
"CveID": "CVE-2023-50387"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20243086001",
"Comment": "bind is earlier than 0:9.16.48-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243086002",
"Comment": "bind-devel is earlier than 0:9.16.48-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243086003",
"Comment": "bind-doc is earlier than 0:9.16.48-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243086004",
"Comment": "bind-utils is earlier than 0:9.16.48-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243086005",
"Comment": "libbind is earlier than 0:9.16.48-alt0.c10f2.1"
}
]
}
]
}
}
]
}

58
oval/c10f1/ALT-PU-2024-3086/objects.json Normal file
View File

@ -0,0 +1,58 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20243086001",
"Version": "1",
"comment": "bind is installed",
"Name": "bind"
},
{
"ID": "oval:org.altlinux.errata:obj:20243086002",
"Version": "1",
"comment": "bind-devel is installed",
"Name": "bind-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20243086003",
"Version": "1",
"comment": "bind-doc is installed",
"Name": "bind-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:20243086004",
"Version": "1",
"comment": "bind-utils is installed",
"Name": "bind-utils"
},
{
"ID": "oval:org.altlinux.errata:obj:20243086005",
"Version": "1",
"comment": "libbind is installed",
"Name": "libbind"
}
]
}

23
oval/c10f1/ALT-PU-2024-3086/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20243086001",
"Version": "1",
"Comment": "package EVR is earlier than 0:9.16.48-alt0.c10f2.1",
"Arch": {},
"Evr": {
"Text": "0:9.16.48-alt0.c10f2.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

78
oval/c10f1/ALT-PU-2024-3086/tests.json Normal file
View File

@ -0,0 +1,78 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20243086001",
"Version": "1",
"Check": "all",
"Comment": "bind is earlier than 0:9.16.48-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243086001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243086001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243086002",
"Version": "1",
"Check": "all",
"Comment": "bind-devel is earlier than 0:9.16.48-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243086002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243086001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243086003",
"Version": "1",
"Check": "all",
"Comment": "bind-doc is earlier than 0:9.16.48-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243086003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243086001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243086004",
"Version": "1",
"Check": "all",
"Comment": "bind-utils is earlier than 0:9.16.48-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243086004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243086001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243086005",
"Version": "1",
"Check": "all",
"Comment": "libbind is earlier than 0:9.16.48-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243086005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243086001"
}
}
]
}

77
oval/c10f1/ALT-PU-2024-3244/definitions.json Normal file
View File

@ -0,0 +1,77 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20243244",
"Version": "oval:org.altlinux.errata:def:20243244",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-3244: package `rclone` update to version 1.61.1-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-3244",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-3244",
"Source": "ALTPU"
}
],
"Description": "This update upgrades rclone to version 1.61.1-alt1. \nSecurity Fix(es):\n\n * #45130: Не работает синхронизация с облаком mail.ru",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-03-05"
},
"Updated": {
"Date": "2024-03-05"
},
"bdu": null,
"Bugzilla": [
{
"Id": "45130",
"Href": "https://bugzilla.altlinux.org/45130",
"Data": "Не работает синхронизация с облаком mail.ru"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20243244001",
"Comment": "rclone is earlier than 0:1.61.1-alt1"
}
]
}
]
}
}
]
}

34
oval/c10f1/ALT-PU-2024-3244/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20243244001",
"Version": "1",
"comment": "rclone is installed",
"Name": "rclone"
}
]
}

23
oval/c10f1/ALT-PU-2024-3244/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20243244001",
"Version": "1",
"Comment": "package EVR is earlier than 0:1.61.1-alt1",
"Arch": {},
"Evr": {
"Text": "0:1.61.1-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c10f1/ALT-PU-2024-3244/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20243244001",
"Version": "1",
"Check": "all",
"Comment": "rclone is earlier than 0:1.61.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243244001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243244001"
}
}
]
}

210
oval/c10f1/ALT-PU-2024-3291/definitions.json Normal file
View File

@ -0,0 +1,210 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20243291",
"Version": "oval:org.altlinux.errata:def:20243291",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-3291: package `kernel-image-un-def` update to version 6.1.79-alt0.c10f.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-3291",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-3291",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-08958",
"RefURL": "https://bdu.fstec.ru/vul/2023-08958",
"Source": "BDU"
},
{
"RefID": "BDU:2024-01186",
"RefURL": "https://bdu.fstec.ru/vul/2024-01186",
"Source": "BDU"
},
{
"RefID": "BDU:2024-01187",
"RefURL": "https://bdu.fstec.ru/vul/2024-01187",
"Source": "BDU"
},
{
"RefID": "CVE-2023-52429",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-52429",
"Source": "CVE"
},
{
"RefID": "CVE-2023-6817",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-6817",
"Source": "CVE"
},
{
"RefID": "CVE-2024-1085",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1085",
"Source": "CVE"
},
{
"RefID": "CVE-2024-1086",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1086",
"Source": "CVE"
}
],
"Description": "This update upgrades kernel-image-un-def to version 6.1.79-alt0.c10f.1. \nSecurity Fix(es):\n\n * BDU:2023-08958: Уязвимость функции nft_pipapo_walk() в модуле net/netfilter/nft_set_pipapo.c подсистемы Netfilter ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации и повысить свои привилегии в системе\n\n * BDU:2024-01186: Уязвимость функции nft_setelem_catchall_deactivate() в модуле net/netfilter/nf_tables_api.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации и повысить свои привилегии\n\n * BDU:2024-01187: Уязвимость функции nft_verdict_init() в модуле net/netfilter/nf_tables_api.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации и повысить свои привилегии\n\n * CVE-2023-52429: dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.\n\n * CVE-2023-6817: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free.\n\nWe recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a.\n\n\n\n * CVE-2024-1085: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe nft_setelem_catchall_deactivate() function checks whether the catch-all set element is active in the current generation instead of the next generation before freeing it, but only flags it inactive in the next generation, making it possible to free the element multiple times, leading to a double free vulnerability.\n\nWe recommend upgrading past commit b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7.\n\n\n\n * CVE-2024-1086: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT.\n\nWe recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.\n\n\n\n * #49276: Включить расчёт параметров CAN по битрейту",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-03-05"
},
"Updated": {
"Date": "2024-03-05"
},
"bdu": [
{
"Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2023-08958",
"Impact": "High",
"Public": "20231218",
"CveID": "BDU:2023-08958"
},
{
"Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2024-01186",
"Impact": "High",
"Public": "20240117",
"CveID": "BDU:2024-01186"
},
{
"Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2024-01187",
"Impact": "High",
"Public": "20240124",
"CveID": "BDU:2024-01187"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-754",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-52429",
"Impact": "Low",
"Public": "20240212",
"CveID": "CVE-2023-52429"
},
{
"Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-6817",
"Impact": "High",
"Public": "20231218",
"CveID": "CVE-2023-6817"
},
{
"Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1085",
"Impact": "High",
"Public": "20240131",
"CveID": "CVE-2024-1085"
},
{
"Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1086",
"Impact": "High",
"Public": "20240131",
"CveID": "CVE-2024-1086"
}
],
"Bugzilla": [
{
"Id": "49276",
"Href": "https://bugzilla.altlinux.org/49276",
"Data": "Включить расчёт параметров CAN по битрейту"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20243291001",
"Comment": "kernel-doc-un is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291002",
"Comment": "kernel-headers-modules-un-def is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291003",
"Comment": "kernel-headers-un-def is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291004",
"Comment": "kernel-image-domU-un-def is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291005",
"Comment": "kernel-image-un-def is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291006",
"Comment": "kernel-image-un-def-checkinstall is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291007",
"Comment": "kernel-modules-drm-ancient-un-def is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291008",
"Comment": "kernel-modules-drm-nouveau-un-def is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291009",
"Comment": "kernel-modules-drm-un-def is earlier than 1:6.1.79-alt0.c10f.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243291010",
"Comment": "kernel-modules-staging-un-def is earlier than 1:6.1.79-alt0.c10f.1"
}
]
}
]
}
}
]
}

88
oval/c10f1/ALT-PU-2024-3291/objects.json Normal file
View File

@ -0,0 +1,88 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20243291001",
"Version": "1",
"comment": "kernel-doc-un is installed",
"Name": "kernel-doc-un"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291002",
"Version": "1",
"comment": "kernel-headers-modules-un-def is installed",
"Name": "kernel-headers-modules-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291003",
"Version": "1",
"comment": "kernel-headers-un-def is installed",
"Name": "kernel-headers-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291004",
"Version": "1",
"comment": "kernel-image-domU-un-def is installed",
"Name": "kernel-image-domU-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291005",
"Version": "1",
"comment": "kernel-image-un-def is installed",
"Name": "kernel-image-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291006",
"Version": "1",
"comment": "kernel-image-un-def-checkinstall is installed",
"Name": "kernel-image-un-def-checkinstall"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291007",
"Version": "1",
"comment": "kernel-modules-drm-ancient-un-def is installed",
"Name": "kernel-modules-drm-ancient-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291008",
"Version": "1",
"comment": "kernel-modules-drm-nouveau-un-def is installed",
"Name": "kernel-modules-drm-nouveau-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291009",
"Version": "1",
"comment": "kernel-modules-drm-un-def is installed",
"Name": "kernel-modules-drm-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20243291010",
"Version": "1",
"comment": "kernel-modules-staging-un-def is installed",
"Name": "kernel-modules-staging-un-def"
}
]
}

23
oval/c10f1/ALT-PU-2024-3291/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20243291001",
"Version": "1",
"Comment": "package EVR is earlier than 1:6.1.79-alt0.c10f.1",
"Arch": {},
"Evr": {
"Text": "1:6.1.79-alt0.c10f.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

138
oval/c10f1/ALT-PU-2024-3291/tests.json Normal file
View File

@ -0,0 +1,138 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20243291001",
"Version": "1",
"Check": "all",
"Comment": "kernel-doc-un is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291002",
"Version": "1",
"Check": "all",
"Comment": "kernel-headers-modules-un-def is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291003",
"Version": "1",
"Check": "all",
"Comment": "kernel-headers-un-def is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291004",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-domU-un-def is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291005",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-un-def is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291006",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-un-def-checkinstall is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291007",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-ancient-un-def is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291008",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-nouveau-un-def is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291009",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-un-def is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243291010",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-staging-un-def is earlier than 1:6.1.79-alt0.c10f.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243291010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243291001"
}
}
]
}

280
oval/c10f1/ALT-PU-2024-3365/definitions.json Normal file
View File

@ -0,0 +1,280 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20243365",
"Version": "oval:org.altlinux.errata:def:20243365",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-3365: package `zabbix` update to version 6.0.27-alt0.c10f1.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-3365",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-3365",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-09066",
"RefURL": "https://bdu.fstec.ru/vul/2023-09066",
"Source": "BDU"
},
{
"RefID": "BDU:2024-00033",
"RefURL": "https://bdu.fstec.ru/vul/2024-00033",
"Source": "BDU"
},
{
"RefID": "BDU:2024-00645",
"RefURL": "https://bdu.fstec.ru/vul/2024-00645",
"Source": "BDU"
},
{
"RefID": "CVE-2023-32725",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32725",
"Source": "CVE"
},
{
"RefID": "CVE-2023-32726",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32726",
"Source": "CVE"
},
{
"RefID": "CVE-2023-32727",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32727",
"Source": "CVE"
},
{
"RefID": "CVE-2023-32728",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32728",
"Source": "CVE"
},
{
"RefID": "CVE-2024-22119",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-22119",
"Source": "CVE"
}
],
"Description": "This update upgrades zabbix to version 6.0.27-alt0.c10f1.1. \nSecurity Fix(es):\n\n * BDU:2023-09066: Уязвимость файла cookie zbx_session универсальной системы мониторинга Zabbix, позволяющая нарушителю повысить свои привилегии\n\n * BDU:2024-00033: Уязвимость функции icmpping универсальной системы мониторинга Zabbix, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2024-00645: Уязвимость компонента DNS Response Handler агента универсальной системы мониторинга Zabbix, позволяющая нарушителю вызвать переполнение буфера\n\n * CVE-2023-32725: The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particular user.\n\n * CVE-2023-32726: The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server.\n\n * CVE-2023-32727: An attacker who has the privilege to configure Zabbix items can use function icmpping() with additional malicious command inside it to execute arbitrary code on the current Zabbix server.\n\n * CVE-2023-32728: The Zabbix Agent 2 item key smart.disk.get does not sanitize its parameters before passing them to a shell command resulting possible vulnerability for remote code execution.\n\n * CVE-2024-22119: The cause of vulnerability is improper validation of form input field “Name” on Graph page in Items section.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-03-05"
},
"Updated": {
"Date": "2024-03-05"
},
"bdu": [
{
"Cvss": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"Cwe": "CWE-565",
"Href": "https://bdu.fstec.ru/vul/2023-09066",
"Impact": "Critical",
"Public": "20231218",
"CveID": "BDU:2023-09066"
},
{
"Cvss": "AV:N/AC:L/Au:M/C:C/I:C/A:C",
"Cvss3": "AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-20",
"Href": "https://bdu.fstec.ru/vul/2024-00033",
"Impact": "High",
"Public": "20231218",
"CveID": "BDU:2024-00033"
},
{
"Cvss": "AV:N/AC:H/Au:N/C:C/I:C/A:C",
"Cvss3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-754",
"Href": "https://bdu.fstec.ru/vul/2024-00645",
"Impact": "High",
"Public": "20231218",
"CveID": "BDU:2024-00645"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"Cwe": "CWE-565",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32725",
"Impact": "High",
"Public": "20231218",
"CveID": "CVE-2023-32725"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-754",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32726",
"Impact": "High",
"Public": "20231218",
"CveID": "CVE-2023-32726"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-20",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32727",
"Impact": "High",
"Public": "20231218",
"CveID": "CVE-2023-32727"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-94",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32728",
"Impact": "Critical",
"Public": "20231218",
"CveID": "CVE-2023-32728"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"Cwe": "CWE-79",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-22119",
"Impact": "Low",
"Public": "20240209",
"CveID": "CVE-2024-22119"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20243365001",
"Comment": "zabbix-agent is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365002",
"Comment": "zabbix-agent-sudo is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365003",
"Comment": "zabbix-agent2 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365004",
"Comment": "zabbix-common is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365005",
"Comment": "zabbix-common-database-mysql is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365006",
"Comment": "zabbix-common-database-pgsql is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365007",
"Comment": "zabbix-common-database-sqlite3 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365008",
"Comment": "zabbix-contrib is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365009",
"Comment": "zabbix-doc is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365010",
"Comment": "zabbix-java-gateway is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365011",
"Comment": "zabbix-phpfrontend-apache2 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365012",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.0 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365013",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.1 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365014",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.2 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365015",
"Comment": "zabbix-phpfrontend-engine is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365016",
"Comment": "zabbix-phpfrontend-php8.0 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365017",
"Comment": "zabbix-phpfrontend-php8.1 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365018",
"Comment": "zabbix-phpfrontend-php8.2 is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365019",
"Comment": "zabbix-proxy is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365020",
"Comment": "zabbix-proxy-common is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365021",
"Comment": "zabbix-proxy-pgsql is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365022",
"Comment": "zabbix-server-common is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365023",
"Comment": "zabbix-server-mysql is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365024",
"Comment": "zabbix-server-pgsql is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365025",
"Comment": "zabbix-source is earlier than 1:6.0.27-alt0.c10f1.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243365026",
"Comment": "zabbix-web-service is earlier than 1:6.0.27-alt0.c10f1.1"
}
]
}
]
}
}
]
}

184
oval/c10f1/ALT-PU-2024-3365/objects.json Normal file
View File

@ -0,0 +1,184 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20243365001",
"Version": "1",
"comment": "zabbix-agent is installed",
"Name": "zabbix-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365002",
"Version": "1",
"comment": "zabbix-agent-sudo is installed",
"Name": "zabbix-agent-sudo"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365003",
"Version": "1",
"comment": "zabbix-agent2 is installed",
"Name": "zabbix-agent2"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365004",
"Version": "1",
"comment": "zabbix-common is installed",
"Name": "zabbix-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365005",
"Version": "1",
"comment": "zabbix-common-database-mysql is installed",
"Name": "zabbix-common-database-mysql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365006",
"Version": "1",
"comment": "zabbix-common-database-pgsql is installed",
"Name": "zabbix-common-database-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365007",
"Version": "1",
"comment": "zabbix-common-database-sqlite3 is installed",
"Name": "zabbix-common-database-sqlite3"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365008",
"Version": "1",
"comment": "zabbix-contrib is installed",
"Name": "zabbix-contrib"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365009",
"Version": "1",
"comment": "zabbix-doc is installed",
"Name": "zabbix-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365010",
"Version": "1",
"comment": "zabbix-java-gateway is installed",
"Name": "zabbix-java-gateway"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365011",
"Version": "1",
"comment": "zabbix-phpfrontend-apache2 is installed",
"Name": "zabbix-phpfrontend-apache2"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365012",
"Version": "1",
"comment": "zabbix-phpfrontend-apache2-mod_php8.0 is installed",
"Name": "zabbix-phpfrontend-apache2-mod_php8.0"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365013",
"Version": "1",
"comment": "zabbix-phpfrontend-apache2-mod_php8.1 is installed",
"Name": "zabbix-phpfrontend-apache2-mod_php8.1"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365014",
"Version": "1",
"comment": "zabbix-phpfrontend-apache2-mod_php8.2 is installed",
"Name": "zabbix-phpfrontend-apache2-mod_php8.2"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365015",
"Version": "1",
"comment": "zabbix-phpfrontend-engine is installed",
"Name": "zabbix-phpfrontend-engine"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365016",
"Version": "1",
"comment": "zabbix-phpfrontend-php8.0 is installed",
"Name": "zabbix-phpfrontend-php8.0"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365017",
"Version": "1",
"comment": "zabbix-phpfrontend-php8.1 is installed",
"Name": "zabbix-phpfrontend-php8.1"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365018",
"Version": "1",
"comment": "zabbix-phpfrontend-php8.2 is installed",
"Name": "zabbix-phpfrontend-php8.2"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365019",
"Version": "1",
"comment": "zabbix-proxy is installed",
"Name": "zabbix-proxy"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365020",
"Version": "1",
"comment": "zabbix-proxy-common is installed",
"Name": "zabbix-proxy-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365021",
"Version": "1",
"comment": "zabbix-proxy-pgsql is installed",
"Name": "zabbix-proxy-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365022",
"Version": "1",
"comment": "zabbix-server-common is installed",
"Name": "zabbix-server-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365023",
"Version": "1",
"comment": "zabbix-server-mysql is installed",
"Name": "zabbix-server-mysql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365024",
"Version": "1",
"comment": "zabbix-server-pgsql is installed",
"Name": "zabbix-server-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365025",
"Version": "1",
"comment": "zabbix-source is installed",
"Name": "zabbix-source"
},
{
"ID": "oval:org.altlinux.errata:obj:20243365026",
"Version": "1",
"comment": "zabbix-web-service is installed",
"Name": "zabbix-web-service"
}
]
}

23
oval/c10f1/ALT-PU-2024-3365/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20243365001",
"Version": "1",
"Comment": "package EVR is earlier than 1:6.0.27-alt0.c10f1.1",
"Arch": {},
"Evr": {
"Text": "1:6.0.27-alt0.c10f1.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

330
oval/c10f1/ALT-PU-2024-3365/tests.json Normal file
View File

@ -0,0 +1,330 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20243365001",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365002",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent-sudo is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365003",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent2 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365004",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365005",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-mysql is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365006",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-pgsql is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365007",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-sqlite3 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365008",
"Version": "1",
"Check": "all",
"Comment": "zabbix-contrib is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365009",
"Version": "1",
"Check": "all",
"Comment": "zabbix-doc is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365010",
"Version": "1",
"Check": "all",
"Comment": "zabbix-java-gateway is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365011",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365012",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.0 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365013",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.1 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365014",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.2 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365014"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365015",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-engine is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365015"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365016",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-php8.0 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365016"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365017",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-php8.1 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365017"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365018",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-php8.2 is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365018"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365019",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365019"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365020",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy-common is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365020"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365021",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy-pgsql is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365021"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365022",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-common is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365022"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365023",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-mysql is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365023"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365024",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-pgsql is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365024"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365025",
"Version": "1",
"Check": "all",
"Comment": "zabbix-source is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365025"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243365026",
"Version": "1",
"Check": "all",
"Comment": "zabbix-web-service is earlier than 1:6.0.27-alt0.c10f1.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243365026"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243365001"
}
}
]
}

73
oval/c10f2/ALT-PU-2024-2700/definitions.json Normal file
View File

@ -0,0 +1,73 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20242700",
"Version": "oval:org.altlinux.errata:def:20242700",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-2700: package `php8.2-swoole` update to version 5.1.2-alt1.16",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f2"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-2700",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-2700",
"Source": "ALTPU"
}
],
"Description": "This update upgrades php8.2-swoole to version 5.1.2-alt1.16. \nSecurity Fix(es):\n\n * #49121: /usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-03-05"
},
"Updated": {
"Date": "2024-03-05"
},
"bdu": null,
"Bugzilla": [
{
"Id": "49121",
"Href": "https://bugzilla.altlinux.org/49121",
"Data": "/usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:5001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20242700001",
"Comment": "php8.2-swoole is earlier than 0:5.1.2-alt1.16"
}
]
}
]
}
}
]
}

34
oval/c10f2/ALT-PU-2024-2700/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:5001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20242700001",
"Version": "1",
"comment": "php8.2-swoole is installed",
"Name": "php8.2-swoole"
}
]
}

23
oval/c10f2/ALT-PU-2024-2700/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:5001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20242700001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.1.2-alt1.16",
"Arch": {},
"Evr": {
"Text": "0:5.1.2-alt1.16",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c10f2/ALT-PU-2024-2700/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:5001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f2' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:5001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:5001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20242700001",
"Version": "1",
"Check": "all",
"Comment": "php8.2-swoole is earlier than 0:5.1.2-alt1.16",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242700001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242700001"
}
}
]
}

73
oval/c10f2/ALT-PU-2024-2734/definitions.json Normal file
View File

@ -0,0 +1,73 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20242734",
"Version": "oval:org.altlinux.errata:def:20242734",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-2734: package `php8.3-swoole` update to version 5.1.2-alt1.3",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f2"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-2734",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-2734",
"Source": "ALTPU"
}
],
"Description": "This update upgrades php8.3-swoole to version 5.1.2-alt1.3. \nSecurity Fix(es):\n\n * #49121: /usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-03-05"
},
"Updated": {
"Date": "2024-03-05"
},
"bdu": null,
"Bugzilla": [
{
"Id": "49121",
"Href": "https://bugzilla.altlinux.org/49121",
"Data": "/usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:5001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20242734001",
"Comment": "php8.3-swoole is earlier than 0:5.1.2-alt1.3"
}
]
}
]
}
}
]
}

34
oval/c10f2/ALT-PU-2024-2734/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:5001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20242734001",
"Version": "1",
"comment": "php8.3-swoole is installed",
"Name": "php8.3-swoole"
}
]
}

23
oval/c10f2/ALT-PU-2024-2734/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:5001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20242734001",
"Version": "1",
"Comment": "package EVR is earlier than 0:5.1.2-alt1.3",
"Arch": {},
"Evr": {
"Text": "0:5.1.2-alt1.3",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c10f2/ALT-PU-2024-2734/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:5001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f2' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:5001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:5001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20242734001",
"Version": "1",
"Check": "all",
"Comment": "php8.3-swoole is earlier than 0:5.1.2-alt1.3",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242734001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242734001"
}
}
]
}

298
oval/p10/ALT-PU-2024-2835/definitions.json Normal file
View File

File diff suppressed because one or more lines are too long

46
oval/p10/ALT-PU-2024-2835/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20242835001",
"Version": "1",
"comment": "firefox-esr is installed",
"Name": "firefox-esr"
},
{
"ID": "oval:org.altlinux.errata:obj:20242835002",
"Version": "1",
"comment": "firefox-esr-config-privacy is installed",
"Name": "firefox-esr-config-privacy"
},
{
"ID": "oval:org.altlinux.errata:obj:20242835003",
"Version": "1",
"comment": "firefox-esr-wayland is installed",
"Name": "firefox-esr-wayland"
}
]
}

23
oval/p10/ALT-PU-2024-2835/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20242835001",
"Version": "1",
"Comment": "package EVR is earlier than 0:115.8.0-alt1",
"Arch": {},
"Evr": {
"Text": "0:115.8.0-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/p10/ALT-PU-2024-2835/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20242835001",
"Version": "1",
"Check": "all",
"Comment": "firefox-esr is earlier than 0:115.8.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242835001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242835001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242835002",
"Version": "1",
"Check": "all",
"Comment": "firefox-esr-config-privacy is earlier than 0:115.8.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242835002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242835001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242835003",
"Version": "1",
"Check": "all",
"Comment": "firefox-esr-wayland is earlier than 0:115.8.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242835003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242835001"
}
}
]
}