From 75f66b498529976b8802e0eaf5a2225fb48dc913 Mon Sep 17 00:00:00 2001 From: pepelyaevip Date: Tue, 5 Mar 2024 21:02:18 +0000 Subject: [PATCH] ALT Vulnerability --- oval/c10f1/ALT-PU-2024-3086/definitions.json | 116 +++++++ oval/c10f1/ALT-PU-2024-3086/objects.json | 58 ++++ oval/c10f1/ALT-PU-2024-3086/states.json | 23 ++ oval/c10f1/ALT-PU-2024-3086/tests.json | 78 +++++ oval/c10f1/ALT-PU-2024-3244/definitions.json | 77 +++++ oval/c10f1/ALT-PU-2024-3244/objects.json | 34 ++ oval/c10f1/ALT-PU-2024-3244/states.json | 23 ++ oval/c10f1/ALT-PU-2024-3244/tests.json | 30 ++ oval/c10f1/ALT-PU-2024-3291/definitions.json | 210 ++++++++++++ oval/c10f1/ALT-PU-2024-3291/objects.json | 88 +++++ oval/c10f1/ALT-PU-2024-3291/states.json | 23 ++ oval/c10f1/ALT-PU-2024-3291/tests.json | 138 ++++++++ oval/c10f1/ALT-PU-2024-3365/definitions.json | 280 ++++++++++++++++ oval/c10f1/ALT-PU-2024-3365/objects.json | 184 +++++++++++ oval/c10f1/ALT-PU-2024-3365/states.json | 23 ++ oval/c10f1/ALT-PU-2024-3365/tests.json | 330 +++++++++++++++++++ oval/c10f2/ALT-PU-2024-2700/definitions.json | 73 ++++ oval/c10f2/ALT-PU-2024-2700/objects.json | 34 ++ oval/c10f2/ALT-PU-2024-2700/states.json | 23 ++ oval/c10f2/ALT-PU-2024-2700/tests.json | 30 ++ oval/c10f2/ALT-PU-2024-2734/definitions.json | 73 ++++ oval/c10f2/ALT-PU-2024-2734/objects.json | 34 ++ oval/c10f2/ALT-PU-2024-2734/states.json | 23 ++ oval/c10f2/ALT-PU-2024-2734/tests.json | 30 ++ oval/p10/ALT-PU-2024-2835/definitions.json | 298 +++++++++++++++++ oval/p10/ALT-PU-2024-2835/objects.json | 46 +++ oval/p10/ALT-PU-2024-2835/states.json | 23 ++ oval/p10/ALT-PU-2024-2835/tests.json | 54 +++ 28 files changed, 2456 insertions(+) create mode 100644 oval/c10f1/ALT-PU-2024-3086/definitions.json create mode 100644 oval/c10f1/ALT-PU-2024-3086/objects.json create mode 100644 oval/c10f1/ALT-PU-2024-3086/states.json create mode 100644 oval/c10f1/ALT-PU-2024-3086/tests.json create mode 100644 oval/c10f1/ALT-PU-2024-3244/definitions.json create mode 100644 oval/c10f1/ALT-PU-2024-3244/objects.json create mode 100644 oval/c10f1/ALT-PU-2024-3244/states.json create mode 100644 oval/c10f1/ALT-PU-2024-3244/tests.json create mode 100644 oval/c10f1/ALT-PU-2024-3291/definitions.json create mode 100644 oval/c10f1/ALT-PU-2024-3291/objects.json create mode 100644 oval/c10f1/ALT-PU-2024-3291/states.json create mode 100644 oval/c10f1/ALT-PU-2024-3291/tests.json create mode 100644 oval/c10f1/ALT-PU-2024-3365/definitions.json create mode 100644 oval/c10f1/ALT-PU-2024-3365/objects.json create mode 100644 oval/c10f1/ALT-PU-2024-3365/states.json create mode 100644 oval/c10f1/ALT-PU-2024-3365/tests.json create mode 100644 oval/c10f2/ALT-PU-2024-2700/definitions.json create mode 100644 oval/c10f2/ALT-PU-2024-2700/objects.json create mode 100644 oval/c10f2/ALT-PU-2024-2700/states.json create mode 100644 oval/c10f2/ALT-PU-2024-2700/tests.json create mode 100644 oval/c10f2/ALT-PU-2024-2734/definitions.json create mode 100644 oval/c10f2/ALT-PU-2024-2734/objects.json create mode 100644 oval/c10f2/ALT-PU-2024-2734/states.json create mode 100644 oval/c10f2/ALT-PU-2024-2734/tests.json create mode 100644 oval/p10/ALT-PU-2024-2835/definitions.json create mode 100644 oval/p10/ALT-PU-2024-2835/objects.json create mode 100644 oval/p10/ALT-PU-2024-2835/states.json create mode 100644 oval/p10/ALT-PU-2024-2835/tests.json diff --git a/oval/c10f1/ALT-PU-2024-3086/definitions.json b/oval/c10f1/ALT-PU-2024-3086/definitions.json new file mode 100644 index 0000000000..0a10818b01 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3086/definitions.json @@ -0,0 +1,116 @@ +{ + "Definition": [ + { + "ID": "oval:org.altlinux.errata:def:20243086", + "Version": "oval:org.altlinux.errata:def:20243086", + "Class": "patch", + "Metadata": { + "Title": "ALT-PU-2024-3086: package `bind` update to version 9.16.48-alt0.c10f2.1", + "AffectedList": [ + { + "Family": "unix", + "Platforms": [ + "ALT Linux branch c10f1" + ], + "Products": [ + "ALT SP Workstation", + "ALT SP Server" + ] + } + ], + "References": [ + { + "RefID": "ALT-PU-2024-3086", + "RefURL": "https://errata.altlinux.org/ALT-PU-2024-3086", + "Source": "ALTPU" + }, + { + "RefID": "BDU:2024-01359", + "RefURL": "https://bdu.fstec.ru/vul/2024-01359", + "Source": "BDU" + }, + { + "RefID": "CVE-2023-50387", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387", + "Source": "CVE" + } + ], + "Description": "This update upgrades bind to version 9.16.48-alt0.c10f2.1. \nSecurity Fix(es):\n\n * BDU:2024-01359: Уязвимость компонента DNSSEC реализации протокола DNS сервера DNS BIND, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2023-50387: Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the \"KeyTrap\" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.", + "Advisory": { + "From": "errata.altlinux.org", + "Severity": "High", + "Rights": "Copyright 2024 BaseALT Ltd.", + "Issued": { + "Date": "2024-03-05" + }, + "Updated": { + "Date": "2024-03-05" + }, + "bdu": [ + { + "Cvss": "AV:N/AC:L/Au:N/C:N/I:N/A:C", + "Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "Cwe": "CWE-400", + "Href": "https://bdu.fstec.ru/vul/2024-01359", + "Impact": "High", + "Public": "20240213", + "CveID": "BDU:2024-01359" + } + ], + "Cves": [ + { + "Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "Cwe": "CWE-770", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387", + "Impact": "High", + "Public": "20240214", + "CveID": "CVE-2023-50387" + } + ], + "AffectedCpeList": { + "Cpe": [ + "cpe:/o:alt:spworkstation:10", + "cpe:/o:alt:spserver:10" + ] + } + } + }, + "Criteria": { + "Operator": "AND", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:4001", + "Comment": "ALT Linux must be installed" + } + ], + "Criterias": [ + { + "Operator": "OR", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:20243086001", + "Comment": "bind is earlier than 0:9.16.48-alt0.c10f2.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243086002", + "Comment": "bind-devel is earlier than 0:9.16.48-alt0.c10f2.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243086003", + "Comment": "bind-doc is earlier than 0:9.16.48-alt0.c10f2.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243086004", + "Comment": "bind-utils is earlier than 0:9.16.48-alt0.c10f2.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243086005", + "Comment": "libbind is earlier than 0:9.16.48-alt0.c10f2.1" + } + ] + } + ] + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3086/objects.json b/oval/c10f1/ALT-PU-2024-3086/objects.json new file mode 100644 index 0000000000..f5694873ee --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3086/objects.json @@ -0,0 +1,58 @@ +{ + "TextFileContent54Objects": [ + { + "ID": "oval:org.altlinux.errata:obj:4001", + "Version": "1", + "comment": "Evaluate `/etc/os-release` file content", + "Path": { + "dataType": "string", + "Text": "/etc" + }, + "Filepath": { + "Datatype": "string", + "Text": "os-release" + }, + "Pattern": { + "Datatype": "string", + "Operation": "pattern match", + "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)" + }, + "Instance": { + "Datatype": "int", + "Text": "1" + } + } + ], + "RpmInfoObjects": [ + { + "ID": "oval:org.altlinux.errata:obj:20243086001", + "Version": "1", + "comment": "bind is installed", + "Name": "bind" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243086002", + "Version": "1", + "comment": "bind-devel is installed", + "Name": "bind-devel" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243086003", + "Version": "1", + "comment": "bind-doc is installed", + "Name": "bind-doc" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243086004", + "Version": "1", + "comment": "bind-utils is installed", + "Name": "bind-utils" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243086005", + "Version": "1", + "comment": "libbind is installed", + "Name": "libbind" + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3086/states.json b/oval/c10f1/ALT-PU-2024-3086/states.json new file mode 100644 index 0000000000..dcf041554d --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3086/states.json @@ -0,0 +1,23 @@ +{ + "TextFileContent54State": [ + { + "ID": "oval:org.altlinux.errata:ste:4001", + "Version": "1", + "Text": {} + } + ], + "RpmInfoState": [ + { + "ID": "oval:org.altlinux.errata:ste:20243086001", + "Version": "1", + "Comment": "package EVR is earlier than 0:9.16.48-alt0.c10f2.1", + "Arch": {}, + "Evr": { + "Text": "0:9.16.48-alt0.c10f2.1", + "Datatype": "evr_string", + "Operation": "less than" + }, + "Subexpression": {} + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3086/tests.json b/oval/c10f1/ALT-PU-2024-3086/tests.json new file mode 100644 index 0000000000..5a2830a4b8 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3086/tests.json @@ -0,0 +1,78 @@ +{ + "TextFileContent54Tests": [ + { + "ID": "oval:org.altlinux.errata:tst:4001", + "Version": "1", + "Check": "all", + "Comment": "ALT Linux based on branch 'c10f1' must be installed", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:4001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:4001" + } + } + ], + "RPMInfoTests": [ + { + "ID": "oval:org.altlinux.errata:tst:20243086001", + "Version": "1", + "Check": "all", + "Comment": "bind is earlier than 0:9.16.48-alt0.c10f2.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243086001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243086001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243086002", + "Version": "1", + "Check": "all", + "Comment": "bind-devel is earlier than 0:9.16.48-alt0.c10f2.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243086002" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243086001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243086003", + "Version": "1", + "Check": "all", + "Comment": "bind-doc is earlier than 0:9.16.48-alt0.c10f2.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243086003" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243086001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243086004", + "Version": "1", + "Check": "all", + "Comment": "bind-utils is earlier than 0:9.16.48-alt0.c10f2.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243086004" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243086001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243086005", + "Version": "1", + "Check": "all", + "Comment": "libbind is earlier than 0:9.16.48-alt0.c10f2.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243086005" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243086001" + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3244/definitions.json b/oval/c10f1/ALT-PU-2024-3244/definitions.json new file mode 100644 index 0000000000..65c5a42ae4 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3244/definitions.json @@ -0,0 +1,77 @@ +{ + "Definition": [ + { + "ID": "oval:org.altlinux.errata:def:20243244", + "Version": "oval:org.altlinux.errata:def:20243244", + "Class": "patch", + "Metadata": { + "Title": "ALT-PU-2024-3244: package `rclone` update to version 1.61.1-alt1", + "AffectedList": [ + { + "Family": "unix", + "Platforms": [ + "ALT Linux branch c10f1" + ], + "Products": [ + "ALT SP Workstation", + "ALT SP Server" + ] + } + ], + "References": [ + { + "RefID": "ALT-PU-2024-3244", + "RefURL": "https://errata.altlinux.org/ALT-PU-2024-3244", + "Source": "ALTPU" + } + ], + "Description": "This update upgrades rclone to version 1.61.1-alt1. \nSecurity Fix(es):\n\n * #45130: Не работает синхронизация с облаком mail.ru", + "Advisory": { + "From": "errata.altlinux.org", + "Severity": "Low", + "Rights": "Copyright 2024 BaseALT Ltd.", + "Issued": { + "Date": "2024-03-05" + }, + "Updated": { + "Date": "2024-03-05" + }, + "bdu": null, + "Bugzilla": [ + { + "Id": "45130", + "Href": "https://bugzilla.altlinux.org/45130", + "Data": "Не работает синхронизация с облаком mail.ru" + } + ], + "AffectedCpeList": { + "Cpe": [ + "cpe:/o:alt:spworkstation:10", + "cpe:/o:alt:spserver:10" + ] + } + } + }, + "Criteria": { + "Operator": "AND", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:4001", + "Comment": "ALT Linux must be installed" + } + ], + "Criterias": [ + { + "Operator": "OR", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:20243244001", + "Comment": "rclone is earlier than 0:1.61.1-alt1" + } + ] + } + ] + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3244/objects.json b/oval/c10f1/ALT-PU-2024-3244/objects.json new file mode 100644 index 0000000000..2ae4939a36 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3244/objects.json @@ -0,0 +1,34 @@ +{ + "TextFileContent54Objects": [ + { + "ID": "oval:org.altlinux.errata:obj:4001", + "Version": "1", + "comment": "Evaluate `/etc/os-release` file content", + "Path": { + "dataType": "string", + "Text": "/etc" + }, + "Filepath": { + "Datatype": "string", + "Text": "os-release" + }, + "Pattern": { + "Datatype": "string", + "Operation": "pattern match", + "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)" + }, + "Instance": { + "Datatype": "int", + "Text": "1" + } + } + ], + "RpmInfoObjects": [ + { + "ID": "oval:org.altlinux.errata:obj:20243244001", + "Version": "1", + "comment": "rclone is installed", + "Name": "rclone" + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3244/states.json b/oval/c10f1/ALT-PU-2024-3244/states.json new file mode 100644 index 0000000000..8627d841ad --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3244/states.json @@ -0,0 +1,23 @@ +{ + "TextFileContent54State": [ + { + "ID": "oval:org.altlinux.errata:ste:4001", + "Version": "1", + "Text": {} + } + ], + "RpmInfoState": [ + { + "ID": "oval:org.altlinux.errata:ste:20243244001", + "Version": "1", + "Comment": "package EVR is earlier than 0:1.61.1-alt1", + "Arch": {}, + "Evr": { + "Text": "0:1.61.1-alt1", + "Datatype": "evr_string", + "Operation": "less than" + }, + "Subexpression": {} + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3244/tests.json b/oval/c10f1/ALT-PU-2024-3244/tests.json new file mode 100644 index 0000000000..404adbe69e --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3244/tests.json @@ -0,0 +1,30 @@ +{ + "TextFileContent54Tests": [ + { + "ID": "oval:org.altlinux.errata:tst:4001", + "Version": "1", + "Check": "all", + "Comment": "ALT Linux based on branch 'c10f1' must be installed", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:4001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:4001" + } + } + ], + "RPMInfoTests": [ + { + "ID": "oval:org.altlinux.errata:tst:20243244001", + "Version": "1", + "Check": "all", + "Comment": "rclone is earlier than 0:1.61.1-alt1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243244001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243244001" + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3291/definitions.json b/oval/c10f1/ALT-PU-2024-3291/definitions.json new file mode 100644 index 0000000000..a3bb9efbde --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3291/definitions.json @@ -0,0 +1,210 @@ +{ + "Definition": [ + { + "ID": "oval:org.altlinux.errata:def:20243291", + "Version": "oval:org.altlinux.errata:def:20243291", + "Class": "patch", + "Metadata": { + "Title": "ALT-PU-2024-3291: package `kernel-image-un-def` update to version 6.1.79-alt0.c10f.1", + "AffectedList": [ + { + "Family": "unix", + "Platforms": [ + "ALT Linux branch c10f1" + ], + "Products": [ + "ALT SP Workstation", + "ALT SP Server" + ] + } + ], + "References": [ + { + "RefID": "ALT-PU-2024-3291", + "RefURL": "https://errata.altlinux.org/ALT-PU-2024-3291", + "Source": "ALTPU" + }, + { + "RefID": "BDU:2023-08958", + "RefURL": "https://bdu.fstec.ru/vul/2023-08958", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-01186", + "RefURL": "https://bdu.fstec.ru/vul/2024-01186", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-01187", + "RefURL": "https://bdu.fstec.ru/vul/2024-01187", + "Source": "BDU" + }, + { + "RefID": "CVE-2023-52429", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-52429", + "Source": "CVE" + }, + { + "RefID": "CVE-2023-6817", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-6817", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1085", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1085", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1086", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1086", + "Source": "CVE" + } + ], + "Description": "This update upgrades kernel-image-un-def to version 6.1.79-alt0.c10f.1. \nSecurity Fix(es):\n\n * BDU:2023-08958: Уязвимость функции nft_pipapo_walk() в модуле net/netfilter/nft_set_pipapo.c подсистемы Netfilter ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации и повысить свои привилегии в системе\n\n * BDU:2024-01186: Уязвимость функции nft_setelem_catchall_deactivate() в модуле net/netfilter/nf_tables_api.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации и повысить свои привилегии\n\n * BDU:2024-01187: Уязвимость функции nft_verdict_init() в модуле net/netfilter/nf_tables_api.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации и повысить свои привилегии\n\n * CVE-2023-52429: dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.\n\n * CVE-2023-6817: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free.\n\nWe recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a.\n\n\n\n * CVE-2024-1085: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe nft_setelem_catchall_deactivate() function checks whether the catch-all set element is active in the current generation instead of the next generation before freeing it, but only flags it inactive in the next generation, making it possible to free the element multiple times, leading to a double free vulnerability.\n\nWe recommend upgrading past commit b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7.\n\n\n\n * CVE-2024-1086: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT.\n\nWe recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.\n\n\n\n * #49276: Включить расчёт параметров CAN по битрейту", + "Advisory": { + "From": "errata.altlinux.org", + "Severity": "High", + "Rights": "Copyright 2024 BaseALT Ltd.", + "Issued": { + "Date": "2024-03-05" + }, + "Updated": { + "Date": "2024-03-05" + }, + "bdu": [ + { + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-416", + "Href": "https://bdu.fstec.ru/vul/2023-08958", + "Impact": "High", + "Public": "20231218", + "CveID": "BDU:2023-08958" + }, + { + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-416", + "Href": "https://bdu.fstec.ru/vul/2024-01186", + "Impact": "High", + "Public": "20240117", + "CveID": "BDU:2024-01186" + }, + { + "Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C", + "Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-416", + "Href": "https://bdu.fstec.ru/vul/2024-01187", + "Impact": "High", + "Public": "20240124", + "CveID": "BDU:2024-01187" + } + ], + "Cves": [ + { + "Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", + "Cwe": "CWE-754", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-52429", + "Impact": "Low", + "Public": "20240212", + "CveID": "CVE-2023-52429" + }, + { + "Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-416", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-6817", + "Impact": "High", + "Public": "20231218", + "CveID": "CVE-2023-6817" + }, + { + "Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-416", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1085", + "Impact": "High", + "Public": "20240131", + "CveID": "CVE-2024-1085" + }, + { + "Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-416", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1086", + "Impact": "High", + "Public": "20240131", + "CveID": "CVE-2024-1086" + } + ], + "Bugzilla": [ + { + "Id": "49276", + "Href": "https://bugzilla.altlinux.org/49276", + "Data": "Включить расчёт параметров CAN по битрейту" + } + ], + "AffectedCpeList": { + "Cpe": [ + "cpe:/o:alt:spworkstation:10", + "cpe:/o:alt:spserver:10" + ] + } + } + }, + "Criteria": { + "Operator": "AND", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:4001", + "Comment": "ALT Linux must be installed" + } + ], + "Criterias": [ + { + "Operator": "OR", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:20243291001", + "Comment": "kernel-doc-un is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291002", + "Comment": "kernel-headers-modules-un-def is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291003", + "Comment": "kernel-headers-un-def is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291004", + "Comment": "kernel-image-domU-un-def is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291005", + "Comment": "kernel-image-un-def is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291006", + "Comment": "kernel-image-un-def-checkinstall is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291007", + "Comment": "kernel-modules-drm-ancient-un-def is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291008", + "Comment": "kernel-modules-drm-nouveau-un-def is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291009", + "Comment": "kernel-modules-drm-un-def is earlier than 1:6.1.79-alt0.c10f.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243291010", + "Comment": "kernel-modules-staging-un-def is earlier than 1:6.1.79-alt0.c10f.1" + } + ] + } + ] + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3291/objects.json b/oval/c10f1/ALT-PU-2024-3291/objects.json new file mode 100644 index 0000000000..2d85f3d5eb --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3291/objects.json @@ -0,0 +1,88 @@ +{ + "TextFileContent54Objects": [ + { + "ID": "oval:org.altlinux.errata:obj:4001", + "Version": "1", + "comment": "Evaluate `/etc/os-release` file content", + "Path": { + "dataType": "string", + "Text": "/etc" + }, + "Filepath": { + "Datatype": "string", + "Text": "os-release" + }, + "Pattern": { + "Datatype": "string", + "Operation": "pattern match", + "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)" + }, + "Instance": { + "Datatype": "int", + "Text": "1" + } + } + ], + "RpmInfoObjects": [ + { + "ID": "oval:org.altlinux.errata:obj:20243291001", + "Version": "1", + "comment": "kernel-doc-un is installed", + "Name": "kernel-doc-un" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291002", + "Version": "1", + "comment": "kernel-headers-modules-un-def is installed", + "Name": "kernel-headers-modules-un-def" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291003", + "Version": "1", + "comment": "kernel-headers-un-def is installed", + "Name": "kernel-headers-un-def" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291004", + "Version": "1", + "comment": "kernel-image-domU-un-def is installed", + "Name": "kernel-image-domU-un-def" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291005", + "Version": "1", + "comment": "kernel-image-un-def is installed", + "Name": "kernel-image-un-def" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291006", + "Version": "1", + "comment": "kernel-image-un-def-checkinstall is installed", + "Name": "kernel-image-un-def-checkinstall" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291007", + "Version": "1", + "comment": "kernel-modules-drm-ancient-un-def is installed", + "Name": "kernel-modules-drm-ancient-un-def" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291008", + "Version": "1", + "comment": "kernel-modules-drm-nouveau-un-def is installed", + "Name": "kernel-modules-drm-nouveau-un-def" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291009", + "Version": "1", + "comment": "kernel-modules-drm-un-def is installed", + "Name": "kernel-modules-drm-un-def" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243291010", + "Version": "1", + "comment": "kernel-modules-staging-un-def is installed", + "Name": "kernel-modules-staging-un-def" + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3291/states.json b/oval/c10f1/ALT-PU-2024-3291/states.json new file mode 100644 index 0000000000..4d0c814292 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3291/states.json @@ -0,0 +1,23 @@ +{ + "TextFileContent54State": [ + { + "ID": "oval:org.altlinux.errata:ste:4001", + "Version": "1", + "Text": {} + } + ], + "RpmInfoState": [ + { + "ID": "oval:org.altlinux.errata:ste:20243291001", + "Version": "1", + "Comment": "package EVR is earlier than 1:6.1.79-alt0.c10f.1", + "Arch": {}, + "Evr": { + "Text": "1:6.1.79-alt0.c10f.1", + "Datatype": "evr_string", + "Operation": "less than" + }, + "Subexpression": {} + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3291/tests.json b/oval/c10f1/ALT-PU-2024-3291/tests.json new file mode 100644 index 0000000000..5b3cbadfe7 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3291/tests.json @@ -0,0 +1,138 @@ +{ + "TextFileContent54Tests": [ + { + "ID": "oval:org.altlinux.errata:tst:4001", + "Version": "1", + "Check": "all", + "Comment": "ALT Linux based on branch 'c10f1' must be installed", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:4001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:4001" + } + } + ], + "RPMInfoTests": [ + { + "ID": "oval:org.altlinux.errata:tst:20243291001", + "Version": "1", + "Check": "all", + "Comment": "kernel-doc-un is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291002", + "Version": "1", + "Check": "all", + "Comment": "kernel-headers-modules-un-def is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291002" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291003", + "Version": "1", + "Check": "all", + "Comment": "kernel-headers-un-def is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291003" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291004", + "Version": "1", + "Check": "all", + "Comment": "kernel-image-domU-un-def is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291004" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291005", + "Version": "1", + "Check": "all", + "Comment": "kernel-image-un-def is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291005" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291006", + "Version": "1", + "Check": "all", + "Comment": "kernel-image-un-def-checkinstall is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291006" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291007", + "Version": "1", + "Check": "all", + "Comment": "kernel-modules-drm-ancient-un-def is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291007" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291008", + "Version": "1", + "Check": "all", + "Comment": "kernel-modules-drm-nouveau-un-def is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291008" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291009", + "Version": "1", + "Check": "all", + "Comment": "kernel-modules-drm-un-def is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291009" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243291010", + "Version": "1", + "Check": "all", + "Comment": "kernel-modules-staging-un-def is earlier than 1:6.1.79-alt0.c10f.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243291010" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243291001" + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3365/definitions.json b/oval/c10f1/ALT-PU-2024-3365/definitions.json new file mode 100644 index 0000000000..9f61187a9e --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3365/definitions.json @@ -0,0 +1,280 @@ +{ + "Definition": [ + { + "ID": "oval:org.altlinux.errata:def:20243365", + "Version": "oval:org.altlinux.errata:def:20243365", + "Class": "patch", + "Metadata": { + "Title": "ALT-PU-2024-3365: package `zabbix` update to version 6.0.27-alt0.c10f1.1", + "AffectedList": [ + { + "Family": "unix", + "Platforms": [ + "ALT Linux branch c10f1" + ], + "Products": [ + "ALT SP Workstation", + "ALT SP Server" + ] + } + ], + "References": [ + { + "RefID": "ALT-PU-2024-3365", + "RefURL": "https://errata.altlinux.org/ALT-PU-2024-3365", + "Source": "ALTPU" + }, + { + "RefID": "BDU:2023-09066", + "RefURL": "https://bdu.fstec.ru/vul/2023-09066", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-00033", + "RefURL": "https://bdu.fstec.ru/vul/2024-00033", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-00645", + "RefURL": "https://bdu.fstec.ru/vul/2024-00645", + "Source": "BDU" + }, + { + "RefID": "CVE-2023-32725", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32725", + "Source": "CVE" + }, + { + "RefID": "CVE-2023-32726", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32726", + "Source": "CVE" + }, + { + "RefID": "CVE-2023-32727", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32727", + "Source": "CVE" + }, + { + "RefID": "CVE-2023-32728", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32728", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-22119", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-22119", + "Source": "CVE" + } + ], + "Description": "This update upgrades zabbix to version 6.0.27-alt0.c10f1.1. \nSecurity Fix(es):\n\n * BDU:2023-09066: Уязвимость файла cookie zbx_session универсальной системы мониторинга Zabbix, позволяющая нарушителю повысить свои привилегии\n\n * BDU:2024-00033: Уязвимость функции icmpping универсальной системы мониторинга Zabbix, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2024-00645: Уязвимость компонента DNS Response Handler агента универсальной системы мониторинга Zabbix, позволяющая нарушителю вызвать переполнение буфера\n\n * CVE-2023-32725: The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particular user.\n\n * CVE-2023-32726: The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server.\n\n * CVE-2023-32727: An attacker who has the privilege to configure Zabbix items can use function icmpping() with additional malicious command inside it to execute arbitrary code on the current Zabbix server.\n\n * CVE-2023-32728: The Zabbix Agent 2 item key smart.disk.get does not sanitize its parameters before passing them to a shell command resulting possible vulnerability for remote code execution.\n\n * CVE-2024-22119: The cause of vulnerability is improper validation of form input field “Name” on Graph page in Items section.", + "Advisory": { + "From": "errata.altlinux.org", + "Severity": "Critical", + "Rights": "Copyright 2024 BaseALT Ltd.", + "Issued": { + "Date": "2024-03-05" + }, + "Updated": { + "Date": "2024-03-05" + }, + "bdu": [ + { + "Cvss": "AV:N/AC:L/Au:N/C:C/I:C/A:C", + "Cvss3": "AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", + "Cwe": "CWE-565", + "Href": "https://bdu.fstec.ru/vul/2023-09066", + "Impact": "Critical", + "Public": "20231218", + "CveID": "BDU:2023-09066" + }, + { + "Cvss": "AV:N/AC:L/Au:M/C:C/I:C/A:C", + "Cvss3": "AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-20", + "Href": "https://bdu.fstec.ru/vul/2024-00033", + "Impact": "High", + "Public": "20231218", + "CveID": "BDU:2024-00033" + }, + { + "Cvss": "AV:N/AC:H/Au:N/C:C/I:C/A:C", + "Cvss3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-754", + "Href": "https://bdu.fstec.ru/vul/2024-00645", + "Impact": "High", + "Public": "20231218", + "CveID": "BDU:2024-00645" + } + ], + "Cves": [ + { + "Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "Cwe": "CWE-565", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32725", + "Impact": "High", + "Public": "20231218", + "CveID": "CVE-2023-32725" + }, + { + "Cvss3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-754", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32726", + "Impact": "High", + "Public": "20231218", + "CveID": "CVE-2023-32726" + }, + { + "Cvss3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-20", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32727", + "Impact": "High", + "Public": "20231218", + "CveID": "CVE-2023-32727" + }, + { + "Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "Cwe": "CWE-94", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32728", + "Impact": "Critical", + "Public": "20231218", + "CveID": "CVE-2023-32728" + }, + { + "Cvss3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", + "Cwe": "CWE-79", + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-22119", + "Impact": "Low", + "Public": "20240209", + "CveID": "CVE-2024-22119" + } + ], + "AffectedCpeList": { + "Cpe": [ + "cpe:/o:alt:spworkstation:10", + "cpe:/o:alt:spserver:10" + ] + } + } + }, + "Criteria": { + "Operator": "AND", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:4001", + "Comment": "ALT Linux must be installed" + } + ], + "Criterias": [ + { + "Operator": "OR", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:20243365001", + "Comment": "zabbix-agent is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365002", + "Comment": "zabbix-agent-sudo is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365003", + "Comment": "zabbix-agent2 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365004", + "Comment": "zabbix-common is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365005", + "Comment": "zabbix-common-database-mysql is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365006", + "Comment": "zabbix-common-database-pgsql is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365007", + "Comment": "zabbix-common-database-sqlite3 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365008", + "Comment": "zabbix-contrib is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365009", + "Comment": "zabbix-doc is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365010", + "Comment": "zabbix-java-gateway is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365011", + "Comment": "zabbix-phpfrontend-apache2 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365012", + "Comment": "zabbix-phpfrontend-apache2-mod_php8.0 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365013", + "Comment": "zabbix-phpfrontend-apache2-mod_php8.1 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365014", + "Comment": "zabbix-phpfrontend-apache2-mod_php8.2 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365015", + "Comment": "zabbix-phpfrontend-engine is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365016", + "Comment": "zabbix-phpfrontend-php8.0 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365017", + "Comment": "zabbix-phpfrontend-php8.1 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365018", + "Comment": "zabbix-phpfrontend-php8.2 is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365019", + "Comment": "zabbix-proxy is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365020", + "Comment": "zabbix-proxy-common is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365021", + "Comment": "zabbix-proxy-pgsql is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365022", + "Comment": "zabbix-server-common is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365023", + "Comment": "zabbix-server-mysql is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365024", + "Comment": "zabbix-server-pgsql is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365025", + "Comment": "zabbix-source is earlier than 1:6.0.27-alt0.c10f1.1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20243365026", + "Comment": "zabbix-web-service is earlier than 1:6.0.27-alt0.c10f1.1" + } + ] + } + ] + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3365/objects.json b/oval/c10f1/ALT-PU-2024-3365/objects.json new file mode 100644 index 0000000000..35e041a735 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3365/objects.json @@ -0,0 +1,184 @@ +{ + "TextFileContent54Objects": [ + { + "ID": "oval:org.altlinux.errata:obj:4001", + "Version": "1", + "comment": "Evaluate `/etc/os-release` file content", + "Path": { + "dataType": "string", + "Text": "/etc" + }, + "Filepath": { + "Datatype": "string", + "Text": "os-release" + }, + "Pattern": { + "Datatype": "string", + "Operation": "pattern match", + "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)" + }, + "Instance": { + "Datatype": "int", + "Text": "1" + } + } + ], + "RpmInfoObjects": [ + { + "ID": "oval:org.altlinux.errata:obj:20243365001", + "Version": "1", + "comment": "zabbix-agent is installed", + "Name": "zabbix-agent" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365002", + "Version": "1", + "comment": "zabbix-agent-sudo is installed", + "Name": "zabbix-agent-sudo" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365003", + "Version": "1", + "comment": "zabbix-agent2 is installed", + "Name": "zabbix-agent2" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365004", + "Version": "1", + "comment": "zabbix-common is installed", + "Name": "zabbix-common" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365005", + "Version": "1", + "comment": "zabbix-common-database-mysql is installed", + "Name": "zabbix-common-database-mysql" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365006", + "Version": "1", + "comment": "zabbix-common-database-pgsql is installed", + "Name": "zabbix-common-database-pgsql" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365007", + "Version": "1", + "comment": "zabbix-common-database-sqlite3 is installed", + "Name": "zabbix-common-database-sqlite3" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365008", + "Version": "1", + "comment": "zabbix-contrib is installed", + "Name": "zabbix-contrib" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365009", + "Version": "1", + "comment": "zabbix-doc is installed", + "Name": "zabbix-doc" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365010", + "Version": "1", + "comment": "zabbix-java-gateway is installed", + "Name": "zabbix-java-gateway" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365011", + "Version": "1", + "comment": "zabbix-phpfrontend-apache2 is installed", + "Name": "zabbix-phpfrontend-apache2" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365012", + "Version": "1", + "comment": "zabbix-phpfrontend-apache2-mod_php8.0 is installed", + "Name": "zabbix-phpfrontend-apache2-mod_php8.0" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365013", + "Version": "1", + "comment": "zabbix-phpfrontend-apache2-mod_php8.1 is installed", + "Name": "zabbix-phpfrontend-apache2-mod_php8.1" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365014", + "Version": "1", + "comment": "zabbix-phpfrontend-apache2-mod_php8.2 is installed", + "Name": "zabbix-phpfrontend-apache2-mod_php8.2" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365015", + "Version": "1", + "comment": "zabbix-phpfrontend-engine is installed", + "Name": "zabbix-phpfrontend-engine" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365016", + "Version": "1", + "comment": "zabbix-phpfrontend-php8.0 is installed", + "Name": "zabbix-phpfrontend-php8.0" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365017", + "Version": "1", + "comment": "zabbix-phpfrontend-php8.1 is installed", + "Name": "zabbix-phpfrontend-php8.1" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365018", + "Version": "1", + "comment": "zabbix-phpfrontend-php8.2 is installed", + "Name": "zabbix-phpfrontend-php8.2" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365019", + "Version": "1", + "comment": "zabbix-proxy is installed", + "Name": "zabbix-proxy" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365020", + "Version": "1", + "comment": "zabbix-proxy-common is installed", + "Name": "zabbix-proxy-common" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365021", + "Version": "1", + "comment": "zabbix-proxy-pgsql is installed", + "Name": "zabbix-proxy-pgsql" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365022", + "Version": "1", + "comment": "zabbix-server-common is installed", + "Name": "zabbix-server-common" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365023", + "Version": "1", + "comment": "zabbix-server-mysql is installed", + "Name": "zabbix-server-mysql" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365024", + "Version": "1", + "comment": "zabbix-server-pgsql is installed", + "Name": "zabbix-server-pgsql" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365025", + "Version": "1", + "comment": "zabbix-source is installed", + "Name": "zabbix-source" + }, + { + "ID": "oval:org.altlinux.errata:obj:20243365026", + "Version": "1", + "comment": "zabbix-web-service is installed", + "Name": "zabbix-web-service" + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3365/states.json b/oval/c10f1/ALT-PU-2024-3365/states.json new file mode 100644 index 0000000000..62d05fe2d3 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3365/states.json @@ -0,0 +1,23 @@ +{ + "TextFileContent54State": [ + { + "ID": "oval:org.altlinux.errata:ste:4001", + "Version": "1", + "Text": {} + } + ], + "RpmInfoState": [ + { + "ID": "oval:org.altlinux.errata:ste:20243365001", + "Version": "1", + "Comment": "package EVR is earlier than 1:6.0.27-alt0.c10f1.1", + "Arch": {}, + "Evr": { + "Text": "1:6.0.27-alt0.c10f1.1", + "Datatype": "evr_string", + "Operation": "less than" + }, + "Subexpression": {} + } + ] +} \ No newline at end of file diff --git a/oval/c10f1/ALT-PU-2024-3365/tests.json b/oval/c10f1/ALT-PU-2024-3365/tests.json new file mode 100644 index 0000000000..ff42b94226 --- /dev/null +++ b/oval/c10f1/ALT-PU-2024-3365/tests.json @@ -0,0 +1,330 @@ +{ + "TextFileContent54Tests": [ + { + "ID": "oval:org.altlinux.errata:tst:4001", + "Version": "1", + "Check": "all", + "Comment": "ALT Linux based on branch 'c10f1' must be installed", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:4001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:4001" + } + } + ], + "RPMInfoTests": [ + { + "ID": "oval:org.altlinux.errata:tst:20243365001", + "Version": "1", + "Check": "all", + "Comment": "zabbix-agent is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365002", + "Version": "1", + "Check": "all", + "Comment": "zabbix-agent-sudo is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365002" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365003", + "Version": "1", + "Check": "all", + "Comment": "zabbix-agent2 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365003" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365004", + "Version": "1", + "Check": "all", + "Comment": "zabbix-common is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365004" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365005", + "Version": "1", + "Check": "all", + "Comment": "zabbix-common-database-mysql is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365005" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365006", + "Version": "1", + "Check": "all", + "Comment": "zabbix-common-database-pgsql is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365006" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365007", + "Version": "1", + "Check": "all", + "Comment": "zabbix-common-database-sqlite3 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365007" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365008", + "Version": "1", + "Check": "all", + "Comment": "zabbix-contrib is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365008" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365009", + "Version": "1", + "Check": "all", + "Comment": "zabbix-doc is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365009" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365010", + "Version": "1", + "Check": "all", + "Comment": "zabbix-java-gateway is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365010" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365011", + "Version": "1", + "Check": "all", + "Comment": "zabbix-phpfrontend-apache2 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365011" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365012", + "Version": "1", + "Check": "all", + "Comment": "zabbix-phpfrontend-apache2-mod_php8.0 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365012" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365013", + "Version": "1", + "Check": "all", + "Comment": "zabbix-phpfrontend-apache2-mod_php8.1 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365013" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365014", + "Version": "1", + "Check": "all", + "Comment": "zabbix-phpfrontend-apache2-mod_php8.2 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365014" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365015", + "Version": "1", + "Check": "all", + "Comment": "zabbix-phpfrontend-engine is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365015" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365016", + "Version": "1", + "Check": "all", + "Comment": "zabbix-phpfrontend-php8.0 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365016" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365017", + "Version": "1", + "Check": "all", + "Comment": "zabbix-phpfrontend-php8.1 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365017" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365018", + "Version": "1", + "Check": "all", + "Comment": "zabbix-phpfrontend-php8.2 is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365018" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365019", + "Version": "1", + "Check": "all", + "Comment": "zabbix-proxy is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365019" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365020", + "Version": "1", + "Check": "all", + "Comment": "zabbix-proxy-common is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365020" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365021", + "Version": "1", + "Check": "all", + "Comment": "zabbix-proxy-pgsql is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365021" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365022", + "Version": "1", + "Check": "all", + "Comment": "zabbix-server-common is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365022" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365023", + "Version": "1", + "Check": "all", + "Comment": "zabbix-server-mysql is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365023" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365024", + "Version": "1", + "Check": "all", + "Comment": "zabbix-server-pgsql is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365024" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365025", + "Version": "1", + "Check": "all", + "Comment": "zabbix-source is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365025" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20243365026", + "Version": "1", + "Check": "all", + "Comment": "zabbix-web-service is earlier than 1:6.0.27-alt0.c10f1.1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20243365026" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20243365001" + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f2/ALT-PU-2024-2700/definitions.json b/oval/c10f2/ALT-PU-2024-2700/definitions.json new file mode 100644 index 0000000000..85bd223432 --- /dev/null +++ b/oval/c10f2/ALT-PU-2024-2700/definitions.json @@ -0,0 +1,73 @@ +{ + "Definition": [ + { + "ID": "oval:org.altlinux.errata:def:20242700", + "Version": "oval:org.altlinux.errata:def:20242700", + "Class": "patch", + "Metadata": { + "Title": "ALT-PU-2024-2700: package `php8.2-swoole` update to version 5.1.2-alt1.16", + "AffectedList": [ + { + "Family": "unix", + "Platforms": [ + "ALT Linux branch c10f2" + ] + } + ], + "References": [ + { + "RefID": "ALT-PU-2024-2700", + "RefURL": "https://errata.altlinux.org/ALT-PU-2024-2700", + "Source": "ALTPU" + } + ], + "Description": "This update upgrades php8.2-swoole to version 5.1.2-alt1.16. \nSecurity Fix(es):\n\n * #49121: /usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory", + "Advisory": { + "From": "errata.altlinux.org", + "Severity": "Low", + "Rights": "Copyright 2024 BaseALT Ltd.", + "Issued": { + "Date": "2024-03-05" + }, + "Updated": { + "Date": "2024-03-05" + }, + "bdu": null, + "Bugzilla": [ + { + "Id": "49121", + "Href": "https://bugzilla.altlinux.org/49121", + "Data": "/usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory" + } + ], + "AffectedCpeList": { + "Cpe": [ + "cpe:/o:alt:spworkstation:10", + "cpe:/o:alt:spserver:10" + ] + } + } + }, + "Criteria": { + "Operator": "AND", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:5001", + "Comment": "ALT Linux must be installed" + } + ], + "Criterias": [ + { + "Operator": "OR", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:20242700001", + "Comment": "php8.2-swoole is earlier than 0:5.1.2-alt1.16" + } + ] + } + ] + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f2/ALT-PU-2024-2700/objects.json b/oval/c10f2/ALT-PU-2024-2700/objects.json new file mode 100644 index 0000000000..6905684b88 --- /dev/null +++ b/oval/c10f2/ALT-PU-2024-2700/objects.json @@ -0,0 +1,34 @@ +{ + "TextFileContent54Objects": [ + { + "ID": "oval:org.altlinux.errata:obj:5001", + "Version": "1", + "comment": "Evaluate `/etc/os-release` file content", + "Path": { + "dataType": "string", + "Text": "/etc" + }, + "Filepath": { + "Datatype": "string", + "Text": "os-release" + }, + "Pattern": { + "Datatype": "string", + "Operation": "pattern match", + "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)" + }, + "Instance": { + "Datatype": "int", + "Text": "1" + } + } + ], + "RpmInfoObjects": [ + { + "ID": "oval:org.altlinux.errata:obj:20242700001", + "Version": "1", + "comment": "php8.2-swoole is installed", + "Name": "php8.2-swoole" + } + ] +} \ No newline at end of file diff --git a/oval/c10f2/ALT-PU-2024-2700/states.json b/oval/c10f2/ALT-PU-2024-2700/states.json new file mode 100644 index 0000000000..0f6556daa0 --- /dev/null +++ b/oval/c10f2/ALT-PU-2024-2700/states.json @@ -0,0 +1,23 @@ +{ + "TextFileContent54State": [ + { + "ID": "oval:org.altlinux.errata:ste:5001", + "Version": "1", + "Text": {} + } + ], + "RpmInfoState": [ + { + "ID": "oval:org.altlinux.errata:ste:20242700001", + "Version": "1", + "Comment": "package EVR is earlier than 0:5.1.2-alt1.16", + "Arch": {}, + "Evr": { + "Text": "0:5.1.2-alt1.16", + "Datatype": "evr_string", + "Operation": "less than" + }, + "Subexpression": {} + } + ] +} \ No newline at end of file diff --git a/oval/c10f2/ALT-PU-2024-2700/tests.json b/oval/c10f2/ALT-PU-2024-2700/tests.json new file mode 100644 index 0000000000..bfca50897e --- /dev/null +++ b/oval/c10f2/ALT-PU-2024-2700/tests.json @@ -0,0 +1,30 @@ +{ + "TextFileContent54Tests": [ + { + "ID": "oval:org.altlinux.errata:tst:5001", + "Version": "1", + "Check": "all", + "Comment": "ALT Linux based on branch 'c10f2' must be installed", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:5001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:5001" + } + } + ], + "RPMInfoTests": [ + { + "ID": "oval:org.altlinux.errata:tst:20242700001", + "Version": "1", + "Check": "all", + "Comment": "php8.2-swoole is earlier than 0:5.1.2-alt1.16", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20242700001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20242700001" + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f2/ALT-PU-2024-2734/definitions.json b/oval/c10f2/ALT-PU-2024-2734/definitions.json new file mode 100644 index 0000000000..368d7dcfc1 --- /dev/null +++ b/oval/c10f2/ALT-PU-2024-2734/definitions.json @@ -0,0 +1,73 @@ +{ + "Definition": [ + { + "ID": "oval:org.altlinux.errata:def:20242734", + "Version": "oval:org.altlinux.errata:def:20242734", + "Class": "patch", + "Metadata": { + "Title": "ALT-PU-2024-2734: package `php8.3-swoole` update to version 5.1.2-alt1.3", + "AffectedList": [ + { + "Family": "unix", + "Platforms": [ + "ALT Linux branch c10f2" + ] + } + ], + "References": [ + { + "RefID": "ALT-PU-2024-2734", + "RefURL": "https://errata.altlinux.org/ALT-PU-2024-2734", + "Source": "ALTPU" + } + ], + "Description": "This update upgrades php8.3-swoole to version 5.1.2-alt1.3. \nSecurity Fix(es):\n\n * #49121: /usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory", + "Advisory": { + "From": "errata.altlinux.org", + "Severity": "Low", + "Rights": "Copyright 2024 BaseALT Ltd.", + "Issued": { + "Date": "2024-03-05" + }, + "Updated": { + "Date": "2024-03-05" + }, + "bdu": null, + "Bugzilla": [ + { + "Id": "49121", + "Href": "https://bugzilla.altlinux.org/49121", + "Data": "/usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory" + } + ], + "AffectedCpeList": { + "Cpe": [ + "cpe:/o:alt:spworkstation:10", + "cpe:/o:alt:spserver:10" + ] + } + } + }, + "Criteria": { + "Operator": "AND", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:5001", + "Comment": "ALT Linux must be installed" + } + ], + "Criterias": [ + { + "Operator": "OR", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:20242734001", + "Comment": "php8.3-swoole is earlier than 0:5.1.2-alt1.3" + } + ] + } + ] + } + } + ] +} \ No newline at end of file diff --git a/oval/c10f2/ALT-PU-2024-2734/objects.json b/oval/c10f2/ALT-PU-2024-2734/objects.json new file mode 100644 index 0000000000..b8c290663a --- /dev/null +++ b/oval/c10f2/ALT-PU-2024-2734/objects.json @@ -0,0 +1,34 @@ +{ + "TextFileContent54Objects": [ + { + "ID": "oval:org.altlinux.errata:obj:5001", + "Version": "1", + "comment": "Evaluate `/etc/os-release` file content", + "Path": { + "dataType": "string", + "Text": "/etc" + }, + "Filepath": { + "Datatype": "string", + "Text": "os-release" + }, + "Pattern": { + "Datatype": "string", + "Operation": "pattern match", + "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)" + }, + "Instance": { + "Datatype": "int", + "Text": "1" + } + } + ], + "RpmInfoObjects": [ + { + "ID": "oval:org.altlinux.errata:obj:20242734001", + "Version": "1", + "comment": "php8.3-swoole is installed", + "Name": "php8.3-swoole" + } + ] +} \ No newline at end of file diff --git a/oval/c10f2/ALT-PU-2024-2734/states.json b/oval/c10f2/ALT-PU-2024-2734/states.json new file mode 100644 index 0000000000..a20934d55d --- /dev/null +++ b/oval/c10f2/ALT-PU-2024-2734/states.json @@ -0,0 +1,23 @@ +{ + "TextFileContent54State": [ + { + "ID": "oval:org.altlinux.errata:ste:5001", + "Version": "1", + "Text": {} + } + ], + "RpmInfoState": [ + { + "ID": "oval:org.altlinux.errata:ste:20242734001", + "Version": "1", + "Comment": "package EVR is earlier than 0:5.1.2-alt1.3", + "Arch": {}, + "Evr": { + "Text": "0:5.1.2-alt1.3", + "Datatype": "evr_string", + "Operation": "less than" + }, + "Subexpression": {} + } + ] +} \ No newline at end of file diff --git a/oval/c10f2/ALT-PU-2024-2734/tests.json b/oval/c10f2/ALT-PU-2024-2734/tests.json new file mode 100644 index 0000000000..f044eb104c --- /dev/null +++ b/oval/c10f2/ALT-PU-2024-2734/tests.json @@ -0,0 +1,30 @@ +{ + "TextFileContent54Tests": [ + { + "ID": "oval:org.altlinux.errata:tst:5001", + "Version": "1", + "Check": "all", + "Comment": "ALT Linux based on branch 'c10f2' must be installed", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:5001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:5001" + } + } + ], + "RPMInfoTests": [ + { + "ID": "oval:org.altlinux.errata:tst:20242734001", + "Version": "1", + "Check": "all", + "Comment": "php8.3-swoole is earlier than 0:5.1.2-alt1.3", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20242734001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20242734001" + } + } + ] +} \ No newline at end of file diff --git a/oval/p10/ALT-PU-2024-2835/definitions.json b/oval/p10/ALT-PU-2024-2835/definitions.json new file mode 100644 index 0000000000..3ead22dad0 --- /dev/null +++ b/oval/p10/ALT-PU-2024-2835/definitions.json @@ -0,0 +1,298 @@ +{ + "Definition": [ + { + "ID": "oval:org.altlinux.errata:def:20242835", + "Version": "oval:org.altlinux.errata:def:20242835", + "Class": "patch", + "Metadata": { + "Title": "ALT-PU-2024-2835: package `firefox-esr` update to version 115.8.0-alt1", + "AffectedList": [ + { + "Family": "unix", + "Platforms": [ + "ALT Linux branch p10" + ], + "Products": [ + "ALT Server", + "ALT Virtualization Server", + "ALT Workstation", + "ALT Workstation K", + "ALT Education", + "Simply Linux", + "Starterkit" + ] + } + ], + "References": [ + { + "RefID": "ALT-PU-2024-2835", + "RefURL": "https://errata.altlinux.org/ALT-PU-2024-2835", + "Source": "ALTPU" + }, + { + "RefID": "BDU:2024-01619", + "RefURL": "https://bdu.fstec.ru/vul/2024-01619", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-01659", + "RefURL": "https://bdu.fstec.ru/vul/2024-01659", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-01660", + "RefURL": "https://bdu.fstec.ru/vul/2024-01660", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-01661", + "RefURL": "https://bdu.fstec.ru/vul/2024-01661", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-01662", + "RefURL": "https://bdu.fstec.ru/vul/2024-01662", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-01663", + "RefURL": "https://bdu.fstec.ru/vul/2024-01663", + "Source": "BDU" + }, + { + "RefID": "BDU:2024-01664", + "RefURL": "https://bdu.fstec.ru/vul/2024-01664", + "Source": "BDU" + }, + { + "RefID": "CVE-2024-1546", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1546", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1547", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1547", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1548", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1548", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1549", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1549", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1550", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1550", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1551", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1551", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1552", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1552", + "Source": "CVE" + }, + { + "RefID": "CVE-2024-1553", + "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1553", + "Source": "CVE" + } + ], + "Description": "This update upgrades firefox-esr to version 115.8.0-alt1. \nSecurity Fix(es):\n\n * BDU:2024-01619: Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с ошибками представления информации пользовательским интерфейсом, позволяющая нарушителю проводить спуфинг-атаки\n\n * BDU:2024-01659: Уязвимость полноэкранного режима браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю проводить спуфинг-атаки\n\n * BDU:2024-01660: Уязвимость реализации отображения курсора браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю получить произвольные разрешения на веб-сайте без согласия пользователя\n\n * BDU:2024-01661: Уязвимость интерфейса API браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю отобразить alertdialog на другом веб-сайте\n\n * BDU:2024-01662: Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с неверным ограничением визуализируемых слоев или фреймов пользовательского интерфейса, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2024-01663: Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с неверной нейтрализацией особых элементов в выходных данных, используемых входящим компонентом, позволяющая нарушителю внедрить произвольные HTTP-заголовки\n\n * BDU:2024-01664: Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с неверной нейтрализацией особых элементов в выходных данных, используемых входящим компонентом, позволяющая нарушителю выполнить произвольный код\n\n * CVE-2024-1546: When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read. This vulnerability affects Firefox \u003c 123, Firefox ESR \u003c 115.8, and Thunderbird \u003c 115.8.\n\n * CVE-2024-1547: Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website (with the victim website's URL shown). This vulnerability affects Firefox \u003c 123, Firefox ESR \u003c 115.8, and Thunderbird \u003c 115.8.\n\n * CVE-2024-1548: A website could have obscured the fullscreen notification by using a dropdown select input element. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox \u003c 123, Firefox ESR \u003c 115.8, and Thunderbird \u003c 115.8.\n\n * CVE-2024-1549: If a website set a large custom cursor, portions of the cursor could have overlapped with the permission dialog, potentially resulting in user confusion and unexpected granted permissions. This vulnerability affects Firefox \u003c 123, Firefox ESR \u003c 115.8, and Thunderbird \u003c 115.8.\n\n * CVE-2024-1550: A malicious website could have used a combination of exiting fullscreen mode and `requestPointerLock` to cause the user's mouse to be re-positioned unexpectedly, which could have led to user confusion and inadvertently granting permissions they did not intend to grant. This vulnerability affects Firefox \u003c 123, Firefox ESR \u003c 115.8, and Thunderbird \u003c 115.8.\n\n * CVE-2024-1551: Set-Cookie response headers were being incorrectly honored in multipart HTTP responses. If an attacker could control the Content-Type response header, as well as control part of the response body, they could inject Set-Cookie response headers that would have been honored by the browser. This vulnerability affects Firefox \u003c 123, Firefox ESR \u003c 115.8, and Thunderbird \u003c 115.8.\n\n * CVE-2024-1552: Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior.*Note:* This issue only affects 32-bit ARM devices. This vulnerability affects Firefox \u003c 123, Firefox ESR \u003c 115.8, and Thunderbird \u003c 115.8.\n\n * CVE-2024-1553: Memory safety bugs present in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox \u003c 123, Firefox ESR \u003c 115.8, and Thunderbird \u003c 115.8.\n\n * #43516: Прошу добавить поисковую систему Яндекс в браузер Mozilla Firefox", + "Advisory": { + "From": "errata.altlinux.org", + "Severity": "High", + "Rights": "Copyright 2024 BaseALT Ltd.", + "Issued": { + "Date": "2024-03-05" + }, + "Updated": { + "Date": "2024-03-05" + }, + "bdu": [ + { + "Cvss": "AV:N/AC:L/Au:N/C:P/I:P/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", + "Cwe": "CWE-451", + "Href": "https://bdu.fstec.ru/vul/2024-01619", + "Impact": "Low", + "Public": "20240220", + "CveID": "BDU:2024-01619" + }, + { + "Cvss": "AV:N/AC:L/Au:N/C:N/I:P/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", + "Cwe": "CWE-451, CWE-1021", + "Href": "https://bdu.fstec.ru/vul/2024-01659", + "Impact": "Low", + "Public": "20240220", + "CveID": "BDU:2024-01659" + }, + { + "Cvss": "AV:N/AC:L/Au:N/C:N/I:P/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", + "Cwe": "CWE-451, CWE-1021", + "Href": "https://bdu.fstec.ru/vul/2024-01660", + "Impact": "Low", + "Public": "20240220", + "CveID": "BDU:2024-01660" + }, + { + "Cvss": "AV:N/AC:L/Au:N/C:N/I:P/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", + "Cwe": "CWE-451, CWE-1021", + "Href": "https://bdu.fstec.ru/vul/2024-01661", + "Impact": "Low", + "Public": "20240220", + "CveID": "BDU:2024-01661" + }, + { + "Cvss": "AV:N/AC:L/Au:N/C:C/I:C/A:C", + "Cvss3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "Cwe": "CWE-125", + "Href": "https://bdu.fstec.ru/vul/2024-01662", + "Impact": "High", + "Public": "20240220", + "CveID": "BDU:2024-01662" + }, + { + "Cvss": "AV:N/AC:L/Au:N/C:P/I:P/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "Cwe": "CWE-74", + "Href": "https://bdu.fstec.ru/vul/2024-01663", + "Impact": "Low", + "Public": "20240220", + "CveID": "BDU:2024-01663" + }, + { + "Cvss": "AV:N/AC:L/Au:N/C:P/I:P/A:N", + "Cvss3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "Cwe": "CWE-681", + "Href": "https://bdu.fstec.ru/vul/2024-01664", + "Impact": "Low", + "Public": "20240220", + "CveID": "BDU:2024-01664" + } + ], + "Cves": [ + { + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1546", + "Impact": "None", + "Public": "20240220", + "CveID": "CVE-2024-1546" + }, + { + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1547", + "Impact": "None", + "Public": "20240220", + "CveID": "CVE-2024-1547" + }, + { + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1548", + "Impact": "None", + "Public": "20240220", + "CveID": "CVE-2024-1548" + }, + { + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1549", + "Impact": "None", + "Public": "20240220", + "CveID": "CVE-2024-1549" + }, + { + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1550", + "Impact": "None", + "Public": "20240220", + "CveID": "CVE-2024-1550" + }, + { + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1551", + "Impact": "None", + "Public": "20240220", + "CveID": "CVE-2024-1551" + }, + { + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1552", + "Impact": "None", + "Public": "20240220", + "CveID": "CVE-2024-1552" + }, + { + "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1553", + "Impact": "None", + "Public": "20240220", + "CveID": "CVE-2024-1553" + } + ], + "Bugzilla": [ + { + "Id": "43516", + "Href": "https://bugzilla.altlinux.org/43516", + "Data": "Прошу добавить поисковую систему Яндекс в браузер Mozilla Firefox" + } + ], + "AffectedCpeList": { + "Cpe": [ + "cpe:/o:alt:kworkstation:10", + "cpe:/o:alt:workstation:10", + "cpe:/o:alt:server:10", + "cpe:/o:alt:server-v:10", + "cpe:/o:alt:education:10", + "cpe:/o:alt:slinux:10", + "cpe:/o:alt:starterkit:p10", + "cpe:/o:alt:kworkstation:10.1", + "cpe:/o:alt:workstation:10.1", + "cpe:/o:alt:server:10.1", + "cpe:/o:alt:server-v:10.1", + "cpe:/o:alt:education:10.1", + "cpe:/o:alt:slinux:10.1", + "cpe:/o:alt:starterkit:10.1", + "cpe:/o:alt:kworkstation:10.2", + "cpe:/o:alt:workstation:10.2", + "cpe:/o:alt:server:10.2", + "cpe:/o:alt:server-v:10.2", + "cpe:/o:alt:education:10.2", + "cpe:/o:alt:slinux:10.2", + "cpe:/o:alt:starterkit:10.2" + ] + } + } + }, + "Criteria": { + "Operator": "AND", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:2001", + "Comment": "ALT Linux must be installed" + } + ], + "Criterias": [ + { + "Operator": "OR", + "Criterions": [ + { + "TestRef": "oval:org.altlinux.errata:tst:20242835001", + "Comment": "firefox-esr is earlier than 0:115.8.0-alt1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20242835002", + "Comment": "firefox-esr-config-privacy is earlier than 0:115.8.0-alt1" + }, + { + "TestRef": "oval:org.altlinux.errata:tst:20242835003", + "Comment": "firefox-esr-wayland is earlier than 0:115.8.0-alt1" + } + ] + } + ] + } + } + ] +} \ No newline at end of file diff --git a/oval/p10/ALT-PU-2024-2835/objects.json b/oval/p10/ALT-PU-2024-2835/objects.json new file mode 100644 index 0000000000..d0ca0811c1 --- /dev/null +++ b/oval/p10/ALT-PU-2024-2835/objects.json @@ -0,0 +1,46 @@ +{ + "TextFileContent54Objects": [ + { + "ID": "oval:org.altlinux.errata:obj:2001", + "Version": "1", + "comment": "Evaluate `/etc/os-release` file content", + "Path": { + "dataType": "string", + "Text": "/etc" + }, + "Filepath": { + "Datatype": "string", + "Text": "os-release" + }, + "Pattern": { + "Datatype": "string", + "Operation": "pattern match", + "Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*" + }, + "Instance": { + "Datatype": "int", + "Text": "1" + } + } + ], + "RpmInfoObjects": [ + { + "ID": "oval:org.altlinux.errata:obj:20242835001", + "Version": "1", + "comment": "firefox-esr is installed", + "Name": "firefox-esr" + }, + { + "ID": "oval:org.altlinux.errata:obj:20242835002", + "Version": "1", + "comment": "firefox-esr-config-privacy is installed", + "Name": "firefox-esr-config-privacy" + }, + { + "ID": "oval:org.altlinux.errata:obj:20242835003", + "Version": "1", + "comment": "firefox-esr-wayland is installed", + "Name": "firefox-esr-wayland" + } + ] +} \ No newline at end of file diff --git a/oval/p10/ALT-PU-2024-2835/states.json b/oval/p10/ALT-PU-2024-2835/states.json new file mode 100644 index 0000000000..0266f6fe37 --- /dev/null +++ b/oval/p10/ALT-PU-2024-2835/states.json @@ -0,0 +1,23 @@ +{ + "TextFileContent54State": [ + { + "ID": "oval:org.altlinux.errata:ste:2001", + "Version": "1", + "Text": {} + } + ], + "RpmInfoState": [ + { + "ID": "oval:org.altlinux.errata:ste:20242835001", + "Version": "1", + "Comment": "package EVR is earlier than 0:115.8.0-alt1", + "Arch": {}, + "Evr": { + "Text": "0:115.8.0-alt1", + "Datatype": "evr_string", + "Operation": "less than" + }, + "Subexpression": {} + } + ] +} \ No newline at end of file diff --git a/oval/p10/ALT-PU-2024-2835/tests.json b/oval/p10/ALT-PU-2024-2835/tests.json new file mode 100644 index 0000000000..b8c60fb7c8 --- /dev/null +++ b/oval/p10/ALT-PU-2024-2835/tests.json @@ -0,0 +1,54 @@ +{ + "TextFileContent54Tests": [ + { + "ID": "oval:org.altlinux.errata:tst:2001", + "Version": "1", + "Check": "all", + "Comment": "ALT Linux based on branch 'p10' must be installed", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:2001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:2001" + } + } + ], + "RPMInfoTests": [ + { + "ID": "oval:org.altlinux.errata:tst:20242835001", + "Version": "1", + "Check": "all", + "Comment": "firefox-esr is earlier than 0:115.8.0-alt1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20242835001" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20242835001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20242835002", + "Version": "1", + "Check": "all", + "Comment": "firefox-esr-config-privacy is earlier than 0:115.8.0-alt1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20242835002" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20242835001" + } + }, + { + "ID": "oval:org.altlinux.errata:tst:20242835003", + "Version": "1", + "Check": "all", + "Comment": "firefox-esr-wayland is earlier than 0:115.8.0-alt1", + "Object": { + "ObjectRef": "oval:org.altlinux.errata:obj:20242835003" + }, + "State": { + "StateRef": "oval:org.altlinux.errata:ste:20242835001" + } + } + ] +} \ No newline at end of file