pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ALT Vulnerability

Browse Source
This commit is contained in:
Иван Пепеляев 2024-04-27 15:02:17 +00:00
parent 3cec0411e4
commit 84c832be16
34 changed files with 1894 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
oval/c10f1/ALT-PU-2024-3291/definitions.json
View File

@ -413,10 +413,10 @@
},
{
"ID": "CVE-2024-26586",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-787",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-26586",
"Impact": "High",
"Impact": "Low",
"Public": "20240222"
},
{

141
oval/c10f1/ALT-PU-2024-7058/definitions.json Normal file
View File

@ -0,0 +1,141 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20247058",
"Version": "oval:org.altlinux.errata:def:20247058",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-7058: package `libxslt` update to version 1.1.37-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-7058",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-7058",
"Source": "ALTPU"
},
{
"RefID": "BDU:2021-03941",
"RefURL": "https://bdu.fstec.ru/vul/2021-03941",
"Source": "BDU"
},
{
"RefID": "BDU:2022-03033",
"RefURL": "https://bdu.fstec.ru/vul/2022-03033",
"Source": "BDU"
},
{
"RefID": "CVE-2021-30560",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-30560",
"Source": "CVE"
},
{
"RefID": "CVE-2022-29824",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2022-29824",
"Source": "CVE"
}
],
"Description": "This update upgrades libxslt to version 1.1.37-alt1. \nSecurity Fix(es):\n\n * BDU:2021-03941: Уязвимость реализации технологии XSLT (eXtensible Stylesheet Language Transformations) модуля отображения Blink браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2022-03033: Уязвимость компонентов buf.c и tree.c библиотеки libxml2, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код\n\n * CVE-2021-30560: Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.\n\n * CVE-2022-29824: In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other software using libxml2's buffer functions, for example libxslt through 1.1.35, is affected as well.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2021-03941",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2021-03941",
"Impact": "High",
"Public": "20210612"
},
{
"ID": "BDU:2022-03033",
"CVSS": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"CWE": "CWE-190, CWE-787",
"Href": "https://bdu.fstec.ru/vul/2022-03033",
"Impact": "Low",
"Public": "20220308"
}
],
"CVEs": [
{
"ID": "CVE-2021-30560",
"CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-30560",
"Impact": "High",
"Public": "20210803"
},
{
"ID": "CVE-2022-29824",
"CVSS": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"CWE": "CWE-190",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2022-29824",
"Impact": "Low",
"Public": "20220503"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20247058001",
"Comment": "libxslt is earlier than 0:1.1.37-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20247058002",
"Comment": "libxslt-devel is earlier than 0:1.1.37-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20247058003",
"Comment": "libxslt-devel-doc is earlier than 0:1.1.37-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20247058004",
"Comment": "xsltproc is earlier than 0:1.1.37-alt1"
}
]
}
]
}
}
]
}

52
oval/c10f1/ALT-PU-2024-7058/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20247058001",
"Version": "1",
"Comment": "libxslt is installed",
"Name": "libxslt"
},
{
"ID": "oval:org.altlinux.errata:obj:20247058002",
"Version": "1",
"Comment": "libxslt-devel is installed",
"Name": "libxslt-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20247058003",
"Version": "1",
"Comment": "libxslt-devel-doc is installed",
"Name": "libxslt-devel-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:20247058004",
"Version": "1",
"Comment": "xsltproc is installed",
"Name": "xsltproc"
}
]
}

23
oval/c10f1/ALT-PU-2024-7058/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20247058001",
"Version": "1",
"Comment": "package EVR is earlier than 0:1.1.37-alt1",
"Arch": {},
"EVR": {
"Text": "0:1.1.37-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/c10f1/ALT-PU-2024-7058/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20247058001",
"Version": "1",
"Check": "all",
"Comment": "libxslt is earlier than 0:1.1.37-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247058001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247058001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20247058002",
"Version": "1",
"Check": "all",
"Comment": "libxslt-devel is earlier than 0:1.1.37-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247058002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247058001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20247058003",
"Version": "1",
"Check": "all",
"Comment": "libxslt-devel-doc is earlier than 0:1.1.37-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247058003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247058001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20247058004",
"Version": "1",
"Check": "all",
"Comment": "xsltproc is earlier than 0:1.1.37-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247058004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247058001"
}
}
]
}

77
oval/c10f1/ALT-PU-2024-7177/definitions.json Normal file
View File

@ -0,0 +1,77 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20247177",
"Version": "oval:org.altlinux.errata:def:20247177",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-7177: package `python3-module-pycryptodomex` update to version 3.20.0-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-7177",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-7177",
"Source": "ALTPU"
}
],
"Description": "This update upgrades python3-module-pycryptodomex to version 3.20.0-alt1. \nSecurity Fix(es):\n\n * #49419: \u003e= 3.19.1",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": null,
"Bugzilla": [
{
"ID": "49419",
"Href": "https://bugzilla.altlinux.org/49419",
"Data": "\u003e= 3.19.1"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20247177001",
"Comment": "python3-module-pycryptodomex is earlier than 0:3.20.0-alt1"
}
]
}
]
}
}
]
}

34
oval/c10f1/ALT-PU-2024-7177/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20247177001",
"Version": "1",
"Comment": "python3-module-pycryptodomex is installed",
"Name": "python3-module-pycryptodomex"
}
]
}

23
oval/c10f1/ALT-PU-2024-7177/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20247177001",
"Version": "1",
"Comment": "package EVR is earlier than 0:3.20.0-alt1",
"Arch": {},
"EVR": {
"Text": "0:3.20.0-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c10f1/ALT-PU-2024-7177/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20247177001",
"Version": "1",
"Check": "all",
"Comment": "python3-module-pycryptodomex is earlier than 0:3.20.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247177001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247177001"
}
}
]
}

85
oval/c10f1/ALT-PU-2024-7197/definitions.json Normal file
View File

@ -0,0 +1,85 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20247197",
"Version": "oval:org.altlinux.errata:def:20247197",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-7197: package `multimon-ng` update to version 1.3.0-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-7197",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-7197",
"Source": "ALTPU"
},
{
"RefID": "CVE-2020-36619",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2020-36619",
"Source": "CVE"
}
],
"Description": "This update upgrades multimon-ng to version 1.3.0-alt1. \nSecurity Fix(es):\n\n * CVE-2020-36619: A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the function add_ch of the file demod_flex.c. The manipulation of the argument ch leads to format string. Upgrading to version 1.2.0 is able to address this issue. The name of the patch is e5a51c508ef952e81a6da25b43034dd1ed023c07. It is recommended to upgrade the affected component. The identifier VDB-216269 was assigned to this vulnerability.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": null,
"CVEs": [
{
"ID": "CVE-2020-36619",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-134",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2020-36619",
"Impact": "Critical",
"Public": "20221219"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:4001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20247197001",
"Comment": "multimon-ng is earlier than 0:1.3.0-alt1"
}
]
}
]
}
}
]
}

34
oval/c10f1/ALT-PU-2024-7197/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20247197001",
"Version": "1",
"Comment": "multimon-ng is installed",
"Name": "multimon-ng"
}
]
}

23
oval/c10f1/ALT-PU-2024-7197/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20247197001",
"Version": "1",
"Comment": "package EVR is earlier than 0:1.3.0-alt1",
"Arch": {},
"EVR": {
"Text": "0:1.3.0-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c10f1/ALT-PU-2024-7197/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20247197001",
"Version": "1",
"Check": "all",
"Comment": "multimon-ng is earlier than 0:1.3.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247197001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247197001"
}
}
]
}

4
oval/c9f2/ALT-PU-2024-4623/definitions.json
View File

@ -315,10 +315,10 @@
},
{
"ID": "CVE-2024-26586",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-787",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-26586",
"Impact": "High",
"Impact": "Low",
"Public": "20240222"
}
],

126
oval/p10/ALT-PU-2024-6277/definitions.json Normal file
View File

@ -0,0 +1,126 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246277",
"Version": "oval:org.altlinux.errata:def:20246277",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6277: package `libjpeg-turbo` update to version 2.1.5.1-alt1.p10.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6277",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6277",
"Source": "ALTPU"
},
{
"RefID": "CVE-2021-46822",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-46822",
"Source": "CVE"
}
],
"Description": "This update upgrades libjpeg-turbo to version 2.1.5.1-alt1.p10.1. \nSecurity Fix(es):\n\n * CVE-2021-46822: The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer and loading a 16-bit binary PGM file into an RGB buffer. This is related to a heap-based buffer overflow in the get_word_rgb_row function in rdppm.c.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": null,
"CVEs": [
{
"ID": "CVE-2021-46822",
"CVSS": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"CWE": "CWE-787",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-46822",
"Impact": "Low",
"Public": "20220618"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246277001",
"Comment": "libjpeg is earlier than 2:2.1.5.1-alt1.p10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246277002",
"Comment": "libjpeg-devel is earlier than 2:2.1.5.1-alt1.p10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246277003",
"Comment": "libjpeg-utils is earlier than 2:2.1.5.1-alt1.p10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246277004",
"Comment": "libturbojpeg is earlier than 2:2.1.5.1-alt1.p10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246277005",
"Comment": "libturbojpeg-devel is earlier than 2:2.1.5.1-alt1.p10.1"
}
]
}
]
}
}
]
}

58
oval/p10/ALT-PU-2024-6277/objects.json Normal file
View File

@ -0,0 +1,58 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246277001",
"Version": "1",
"Comment": "libjpeg is installed",
"Name": "libjpeg"
},
{
"ID": "oval:org.altlinux.errata:obj:20246277002",
"Version": "1",
"Comment": "libjpeg-devel is installed",
"Name": "libjpeg-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20246277003",
"Version": "1",
"Comment": "libjpeg-utils is installed",
"Name": "libjpeg-utils"
},
{
"ID": "oval:org.altlinux.errata:obj:20246277004",
"Version": "1",
"Comment": "libturbojpeg is installed",
"Name": "libturbojpeg"
},
{
"ID": "oval:org.altlinux.errata:obj:20246277005",
"Version": "1",
"Comment": "libturbojpeg-devel is installed",
"Name": "libturbojpeg-devel"
}
]
}

23
oval/p10/ALT-PU-2024-6277/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246277001",
"Version": "1",
"Comment": "package EVR is earlier than 2:2.1.5.1-alt1.p10.1",
"Arch": {},
"EVR": {
"Text": "2:2.1.5.1-alt1.p10.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

78
oval/p10/ALT-PU-2024-6277/tests.json Normal file
View File

@ -0,0 +1,78 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246277001",
"Version": "1",
"Check": "all",
"Comment": "libjpeg is earlier than 2:2.1.5.1-alt1.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246277001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246277001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246277002",
"Version": "1",
"Check": "all",
"Comment": "libjpeg-devel is earlier than 2:2.1.5.1-alt1.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246277002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246277001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246277003",
"Version": "1",
"Check": "all",
"Comment": "libjpeg-utils is earlier than 2:2.1.5.1-alt1.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246277003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246277001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246277004",
"Version": "1",
"Check": "all",
"Comment": "libturbojpeg is earlier than 2:2.1.5.1-alt1.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246277004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246277001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246277005",
"Version": "1",
"Check": "all",
"Comment": "libturbojpeg-devel is earlier than 2:2.1.5.1-alt1.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246277005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246277001"
}
}
]
}

105
oval/p10/ALT-PU-2024-6285/definitions.json Normal file
View File

@ -0,0 +1,105 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246285",
"Version": "oval:org.altlinux.errata:def:20246285",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6285: package `blender` update to version 3.3.17-alt0.p10.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6285",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6285",
"Source": "ALTPU"
}
],
"Description": "This update upgrades blender to version 3.3.17-alt0.p10.1. \nSecurity Fix(es):\n\n * #40706: blender это программа и он не должен ничего предоставлять",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": null,
"Bugzilla": [
{
"ID": "40706",
"Href": "https://bugzilla.altlinux.org/40706",
"Data": "blender это программа и он не должен ничего предоставлять"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246285001",
"Comment": "blender is earlier than 0:3.3.17-alt0.p10.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20246285002",
"Comment": "blender-doc is earlier than 0:3.3.17-alt0.p10.1"
}
]
}
]
}
}
]
}

40
oval/p10/ALT-PU-2024-6285/objects.json Normal file
View File

@ -0,0 +1,40 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246285001",
"Version": "1",
"Comment": "blender is installed",
"Name": "blender"
},
{
"ID": "oval:org.altlinux.errata:obj:20246285002",
"Version": "1",
"Comment": "blender-doc is installed",
"Name": "blender-doc"
}
]
}

23
oval/p10/ALT-PU-2024-6285/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246285001",
"Version": "1",
"Comment": "package EVR is earlier than 0:3.3.17-alt0.p10.1",
"Arch": {},
"EVR": {
"Text": "0:3.3.17-alt0.p10.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

42
oval/p10/ALT-PU-2024-6285/tests.json Normal file
View File

@ -0,0 +1,42 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246285001",
"Version": "1",
"Check": "all",
"Comment": "blender is earlier than 0:3.3.17-alt0.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246285001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246285001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20246285002",
"Version": "1",
"Check": "all",
"Comment": "blender-doc is earlier than 0:3.3.17-alt0.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246285002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246285001"
}
}
]
}

101
oval/p10/ALT-PU-2024-6962/definitions.json Normal file
View File

@ -0,0 +1,101 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20246962",
"Version": "oval:org.altlinux.errata:def:20246962",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-6962: package `python3-module-jsondiff` update to version 2.0.0-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-6962",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-6962",
"Source": "ALTPU"
}
],
"Description": "This update upgrades python3-module-jsondiff to version 2.0.0-alt1. \nSecurity Fix(es):\n\n * #41297: Файловые конфликты с пакетом jdiff",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": null,
"Bugzilla": [
{
"ID": "41297",
"Href": "https://bugzilla.altlinux.org/41297",
"Data": "Файловые конфликты с пакетом jdiff"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20246962001",
"Comment": "python3-module-jsondiff is earlier than 0:2.0.0-alt1"
}
]
}
]
}
}
]
}

34
oval/p10/ALT-PU-2024-6962/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20246962001",
"Version": "1",
"Comment": "python3-module-jsondiff is installed",
"Name": "python3-module-jsondiff"
}
]
}

23
oval/p10/ALT-PU-2024-6962/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20246962001",
"Version": "1",
"Comment": "package EVR is earlier than 0:2.0.0-alt1",
"Arch": {},
"EVR": {
"Text": "0:2.0.0-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/p10/ALT-PU-2024-6962/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20246962001",
"Version": "1",
"Check": "all",
"Comment": "python3-module-jsondiff is earlier than 0:2.0.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20246962001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20246962001"
}
}
]
}

212
oval/p10/ALT-PU-2024-7018/definitions.json Normal file
View File

@ -0,0 +1,212 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20247018",
"Version": "oval:org.altlinux.errata:def:20247018",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-7018: package `opensc` update to version 0.25.1-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-7018",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-7018",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-02587",
"RefURL": "https://bdu.fstec.ru/vul/2024-02587",
"Source": "BDU"
},
{
"RefID": "BDU:2024-02588",
"RefURL": "https://bdu.fstec.ru/vul/2024-02588",
"Source": "BDU"
},
{
"RefID": "BDU:2024-02589",
"RefURL": "https://bdu.fstec.ru/vul/2024-02589",
"Source": "BDU"
},
{
"RefID": "CVE-2023-2977",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-2977",
"Source": "CVE"
},
{
"RefID": "CVE-2023-40660",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-40660",
"Source": "CVE"
},
{
"RefID": "CVE-2023-40661",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-40661",
"Source": "CVE"
},
{
"RefID": "CVE-2023-4535",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-4535",
"Source": "CVE"
},
{
"RefID": "CVE-2023-5992",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-5992",
"Source": "CVE"
}
],
"Description": "This update upgrades opensc to version 0.25.1-alt1. \nSecurity Fix(es):\n\n * BDU:2024-02587: Уязвимость драйвера MyEID набора программных инструментов и библиотек для работы со смарт-картами OpenSC, позволяющая нарушителю потенциально получить несанкционированный доступ к конфиденциальным данным\n\n * BDU:2024-02588: Уязвимость набора программных инструментов и библиотек для работы со смарт-картами OpenSC, связанная с неправильным ограничением операций в пределах буфера памяти, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации\n\n * BDU:2024-02589: Уязвимость набора программных инструментов и библиотек для работы со смарт-картами OpenSC, связанная с неправильной аутентификацией, позволяющая нарушителю получить несанкционированный доступ, выполнить произвольные действия или скомпрометировать систему\n\n * CVE-2023-2977: A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package. The attacker can supply a smart card package with malformed ASN1 context. The cardos_have_verifyrc_package function scans the ASN1 buffer for 2 tags, where remaining length is wrongly caculated due to moved starting pointer. This leads to possible heap-based buffer oob read. In cases where ASAN is enabled while compiling this causes a crash. Further info leak or more damage is possible.\n\n * CVE-2023-40660: A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can perform cryptographic operations in other processes when an empty zero-length pin is passed. This issue poses a security risk, particularly for OS logon/screen unlock and for small, permanently connected tokens to computers. Additionally, the token can internally track login status. This flaw allows an attacker to gain unauthorized access, carry out malicious actions, or compromise the system without the user's awareness.\n\n * CVE-2023-40661: Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a custom-crafted USB device or smart card to manipulate responses to APDUs. This manipulation can potentially allow \ncompromise key generation, certificate loading, and other card management operations during enrollment.\n\n * CVE-2023-4535: An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical access to the computer and a specially crafted USB device or smart card. This flaw allows the attacker to manipulate APDU responses and potentially gain unauthorized access to sensitive data, compromising the system's security.\n\n * CVE-2023-5992: A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may result in the potential leak of private data.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": [
{
"ID": "BDU:2024-02587",
"CVSS": "AV:L/AC:H/Au:N/C:P/I:P/A:P",
"CVSS3": "AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"CWE": "CWE-125",
"Href": "https://bdu.fstec.ru/vul/2024-02587",
"Impact": "Low",
"Public": "20231106"
},
{
"ID": "BDU:2024-02588",
"CVSS": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"CVSS3": "AV:P/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-119",
"Href": "https://bdu.fstec.ru/vul/2024-02588",
"Impact": "Low",
"Public": "20231106"
},
{
"ID": "BDU:2024-02589",
"CVSS": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"CVSS3": "AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-287",
"Href": "https://bdu.fstec.ru/vul/2024-02589",
"Impact": "Low",
"Public": "20231106"
}
],
"CVEs": [
{
"ID": "CVE-2023-2977",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"CWE": "CWE-125",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-2977",
"Impact": "High",
"Public": "20230601"
},
{
"ID": "CVE-2023-40660",
"CVSS3": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-287",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-40660",
"Impact": "Low",
"Public": "20231106"
},
{
"ID": "CVE-2023-40661",
"CVSS3": "CVSS:3.1/AV:P/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-119",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-40661",
"Impact": "Low",
"Public": "20231106"
},
{
"ID": "CVE-2023-4535",
"CVSS3": "CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"CWE": "CWE-125",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-4535",
"Impact": "Low",
"Public": "20231106"
},
{
"ID": "CVE-2023-5992",
"CVSS3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-203",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-5992",
"Impact": "Low",
"Public": "20240131"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20247018001",
"Comment": "libopensc is earlier than 0:0.25.1-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20247018002",
"Comment": "libopensc-devel is earlier than 0:0.25.1-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20247018003",
"Comment": "opensc is earlier than 0:0.25.1-alt1"
}
]
}
]
}
}
]
}

46
oval/p10/ALT-PU-2024-7018/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20247018001",
"Version": "1",
"Comment": "libopensc is installed",
"Name": "libopensc"
},
{
"ID": "oval:org.altlinux.errata:obj:20247018002",
"Version": "1",
"Comment": "libopensc-devel is installed",
"Name": "libopensc-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:20247018003",
"Version": "1",
"Comment": "opensc is installed",
"Name": "opensc"
}
]
}

23
oval/p10/ALT-PU-2024-7018/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20247018001",
"Version": "1",
"Comment": "package EVR is earlier than 0:0.25.1-alt1",
"Arch": {},
"EVR": {
"Text": "0:0.25.1-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/p10/ALT-PU-2024-7018/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20247018001",
"Version": "1",
"Check": "all",
"Comment": "libopensc is earlier than 0:0.25.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247018001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247018001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20247018002",
"Version": "1",
"Check": "all",
"Comment": "libopensc-devel is earlier than 0:0.25.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247018002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247018001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20247018003",
"Version": "1",
"Check": "all",
"Comment": "opensc is earlier than 0:0.25.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247018003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247018001"
}
}
]
}

113
oval/p10/ALT-PU-2024-7020/definitions.json Normal file
View File

@ -0,0 +1,113 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20247020",
"Version": "oval:org.altlinux.errata:def:20247020",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-7020: package `pam_pkcs11` update to version 0.6.12.1-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-7020",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-7020",
"Source": "ALTPU"
}
],
"Description": "This update upgrades pam_pkcs11 to version 0.6.12.1-alt1. \nSecurity Fix(es):\n\n * #42324: В версии пакета 0.6.12-alt1 отсутствует утилита pkcs11_make_hash_link",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-04-27"
},
"Updated": {
"Date": "2024-04-27"
},
"BDUs": null,
"Bugzilla": [
{
"ID": "42324",
"Href": "https://bugzilla.altlinux.org/42324",
"Data": "В версии пакета 0.6.12-alt1 отсутствует утилита pkcs11_make_hash_link"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20247020001",
"Comment": "pam_pkcs11 is earlier than 0:0.6.12.1-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20247020002",
"Comment": "pam_pkcs11-isbc is earlier than 0:0.6.12.1-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20247020003",
"Comment": "pam_pkcs11-ldap is earlier than 0:0.6.12.1-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20247020004",
"Comment": "pam_pkcs11-pcsc is earlier than 0:0.6.12.1-alt1"
}
]
}
]
}
}
]
}

52
oval/p10/ALT-PU-2024-7020/objects.json Normal file
View File

@ -0,0 +1,52 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20247020001",
"Version": "1",
"Comment": "pam_pkcs11 is installed",
"Name": "pam_pkcs11"
},
{
"ID": "oval:org.altlinux.errata:obj:20247020002",
"Version": "1",
"Comment": "pam_pkcs11-isbc is installed",
"Name": "pam_pkcs11-isbc"
},
{
"ID": "oval:org.altlinux.errata:obj:20247020003",
"Version": "1",
"Comment": "pam_pkcs11-ldap is installed",
"Name": "pam_pkcs11-ldap"
},
{
"ID": "oval:org.altlinux.errata:obj:20247020004",
"Version": "1",
"Comment": "pam_pkcs11-pcsc is installed",
"Name": "pam_pkcs11-pcsc"
}
]
}

23
oval/p10/ALT-PU-2024-7020/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:20247020001",
"Version": "1",
"Comment": "package EVR is earlier than 0:0.6.12.1-alt1",
"Arch": {},
"EVR": {
"Text": "0:0.6.12.1-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

66
oval/p10/ALT-PU-2024-7020/tests.json Normal file
View File

@ -0,0 +1,66 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20247020001",
"Version": "1",
"Check": "all",
"Comment": "pam_pkcs11 is earlier than 0:0.6.12.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247020001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247020001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20247020002",
"Version": "1",
"Check": "all",
"Comment": "pam_pkcs11-isbc is earlier than 0:0.6.12.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247020002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247020001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20247020003",
"Version": "1",
"Check": "all",
"Comment": "pam_pkcs11-ldap is earlier than 0:0.6.12.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247020003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247020001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20247020004",
"Version": "1",
"Check": "all",
"Comment": "pam_pkcs11-pcsc is earlier than 0:0.6.12.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20247020004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20247020001"
}
}
]
}