pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ALT Vulnerability

Browse Source
This commit is contained in:
Иван Пепеляев 2024-03-02 03:02:33 +00:00
parent 0576ab169e
commit a50e7e3925
15 changed files with 1204 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

179
oval/c10f2/ALT-PU-2024-2866/definitions.json Normal file
View File

@ -0,0 +1,179 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20242866",
"Version": "oval:org.altlinux.errata:def:20242866",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-2866: package `kernel-image-un-def` update to version 6.1.79-alt0.c10f.2",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f2"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-2866",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-2866",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-01186",
"RefURL": "https://bdu.fstec.ru/vul/2024-01186",
"Source": "BDU"
},
{
"RefID": "BDU:2024-01187",
"RefURL": "https://bdu.fstec.ru/vul/2024-01187",
"Source": "BDU"
},
{
"RefID": "CVE-2023-52429",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-52429",
"Source": "CVE"
},
{
"RefID": "CVE-2024-1085",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1085",
"Source": "CVE"
},
{
"RefID": "CVE-2024-1086",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-1086",
"Source": "CVE"
}
],
"Description": "This update upgrades kernel-image-un-def to version 6.1.79-alt0.c10f.2. \nSecurity Fix(es):\n\n * BDU:2024-01186: Уязвимость функции nft_setelem_catchall_deactivate() в модуле net/netfilter/nf_tables_api.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации и повысить свои привилегии\n\n * BDU:2024-01187: Уязвимость функции nft_verdict_init() в модуле net/netfilter/nf_tables_api.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации и повысить свои привилегии\n\n * CVE-2023-52429: dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.\n\n * CVE-2024-1085: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe nft_setelem_catchall_deactivate() function checks whether the catch-all set element is active in the current generation instead of the next generation before freeing it, but only flags it inactive in the next generation, making it possible to free the element multiple times, leading to a double free vulnerability.\n\nWe recommend upgrading past commit b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7.\n\n\n\n * CVE-2024-1086: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT.\n\nWe recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.\n\n\n\n * #49276: Включить расчёт параметров CAN по битрейту",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-03-02"
},
"Updated": {
"Date": "2024-03-02"
},
"bdu": [
{
"Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2024-01186",
"Impact": "High",
"Public": "20240117",
"CveID": "BDU:2024-01186"
},
{
"Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://bdu.fstec.ru/vul/2024-01187",
"Impact": "High",
"Public": "20240124",
"CveID": "BDU:2024-01187"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"Cwe": "CWE-754",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-52429",
"Impact": "Low",
"Public": "20240212",
"CveID": "CVE-2023-52429"
},
{
"Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1085",
"Impact": "High",
"Public": "20240131",
"CveID": "CVE-2024-1085"
},
{
"Cvss3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-416",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1086",
"Impact": "High",
"Public": "20240131",
"CveID": "CVE-2024-1086"
}
],
"Bugzilla": [
{
"Id": "49276",
"Href": "https://bugzilla.altlinux.org/49276",
"Data": "Включить расчёт параметров CAN по битрейту"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:5001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20242866001",
"Comment": "kernel-doc-un is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866002",
"Comment": "kernel-headers-modules-un-def is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866003",
"Comment": "kernel-headers-un-def is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866004",
"Comment": "kernel-image-domU-un-def is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866005",
"Comment": "kernel-image-un-def is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866006",
"Comment": "kernel-image-un-def-checkinstall is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866007",
"Comment": "kernel-modules-drm-ancient-un-def is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866008",
"Comment": "kernel-modules-drm-nouveau-un-def is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866009",
"Comment": "kernel-modules-drm-un-def is earlier than 1:6.1.79-alt0.c10f.2"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20242866010",
"Comment": "kernel-modules-staging-un-def is earlier than 1:6.1.79-alt0.c10f.2"
}
]
}
]
}
}
]
}

88
oval/c10f2/ALT-PU-2024-2866/objects.json Normal file
View File

@ -0,0 +1,88 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:5001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20242866001",
"Version": "1",
"comment": "kernel-doc-un is installed",
"Name": "kernel-doc-un"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866002",
"Version": "1",
"comment": "kernel-headers-modules-un-def is installed",
"Name": "kernel-headers-modules-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866003",
"Version": "1",
"comment": "kernel-headers-un-def is installed",
"Name": "kernel-headers-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866004",
"Version": "1",
"comment": "kernel-image-domU-un-def is installed",
"Name": "kernel-image-domU-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866005",
"Version": "1",
"comment": "kernel-image-un-def is installed",
"Name": "kernel-image-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866006",
"Version": "1",
"comment": "kernel-image-un-def-checkinstall is installed",
"Name": "kernel-image-un-def-checkinstall"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866007",
"Version": "1",
"comment": "kernel-modules-drm-ancient-un-def is installed",
"Name": "kernel-modules-drm-ancient-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866008",
"Version": "1",
"comment": "kernel-modules-drm-nouveau-un-def is installed",
"Name": "kernel-modules-drm-nouveau-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866009",
"Version": "1",
"comment": "kernel-modules-drm-un-def is installed",
"Name": "kernel-modules-drm-un-def"
},
{
"ID": "oval:org.altlinux.errata:obj:20242866010",
"Version": "1",
"comment": "kernel-modules-staging-un-def is installed",
"Name": "kernel-modules-staging-un-def"
}
]
}

23
oval/c10f2/ALT-PU-2024-2866/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:5001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20242866001",
"Version": "1",
"Comment": "package EVR is earlier than 1:6.1.79-alt0.c10f.2",
"Arch": {},
"Evr": {
"Text": "1:6.1.79-alt0.c10f.2",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

138
oval/c10f2/ALT-PU-2024-2866/tests.json Normal file
View File

@ -0,0 +1,138 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:5001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f2' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:5001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:5001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20242866001",
"Version": "1",
"Check": "all",
"Comment": "kernel-doc-un is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866002",
"Version": "1",
"Check": "all",
"Comment": "kernel-headers-modules-un-def is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866003",
"Version": "1",
"Check": "all",
"Comment": "kernel-headers-un-def is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866004",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-domU-un-def is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866005",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-un-def is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866006",
"Version": "1",
"Check": "all",
"Comment": "kernel-image-un-def-checkinstall is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866007",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-ancient-un-def is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866008",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-nouveau-un-def is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866009",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-drm-un-def is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20242866010",
"Version": "1",
"Check": "all",
"Comment": "kernel-modules-staging-un-def is earlier than 1:6.1.79-alt0.c10f.2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20242866010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20242866001"
}
}
]
}

268
oval/c10f2/ALT-PU-2024-3079/definitions.json Normal file
View File

@ -0,0 +1,268 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20243079",
"Version": "oval:org.altlinux.errata:def:20243079",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-3079: package `zabbix` update to version 6.0.27-alt0.c10f2.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f2"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-3079",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-3079",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-09066",
"RefURL": "https://bdu.fstec.ru/vul/2023-09066",
"Source": "BDU"
},
{
"RefID": "BDU:2024-00033",
"RefURL": "https://bdu.fstec.ru/vul/2024-00033",
"Source": "BDU"
},
{
"RefID": "BDU:2024-00645",
"RefURL": "https://bdu.fstec.ru/vul/2024-00645",
"Source": "BDU"
},
{
"RefID": "CVE-2023-32725",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32725",
"Source": "CVE"
},
{
"RefID": "CVE-2023-32726",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32726",
"Source": "CVE"
},
{
"RefID": "CVE-2023-32727",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32727",
"Source": "CVE"
},
{
"RefID": "CVE-2023-32728",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32728",
"Source": "CVE"
},
{
"RefID": "CVE-2024-22119",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-22119",
"Source": "CVE"
}
],
"Description": "This update upgrades zabbix to version 6.0.27-alt0.c10f2.1. \nSecurity Fix(es):\n\n * BDU:2023-09066: Уязвимость файла cookie zbx_session универсальной системы мониторинга Zabbix, позволяющая нарушителю повысить свои привилегии\n\n * BDU:2024-00033: Уязвимость функции icmpping универсальной системы мониторинга Zabbix, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2024-00645: Уязвимость компонента DNS Response Handler агента универсальной системы мониторинга Zabbix, позволяющая нарушителю вызвать переполнение буфера\n\n * CVE-2023-32725: The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particular user.\n\n * CVE-2023-32726: The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server.\n\n * CVE-2023-32727: An attacker who has the privilege to configure Zabbix items can use function icmpping() with additional malicious command inside it to execute arbitrary code on the current Zabbix server.\n\n * CVE-2023-32728: The Zabbix Agent 2 item key smart.disk.get does not sanitize its parameters before passing them to a shell command resulting possible vulnerability for remote code execution.\n\n * CVE-2024-22119: The cause of vulnerability is improper validation of form input field “Name” on Graph page in Items section.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-03-02"
},
"Updated": {
"Date": "2024-03-02"
},
"bdu": [
{
"Cvss": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"Cvss3": "AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"Cwe": "CWE-565",
"Href": "https://bdu.fstec.ru/vul/2023-09066",
"Impact": "Critical",
"Public": "20231218",
"CveID": "BDU:2023-09066"
},
{
"Cvss": "AV:N/AC:L/Au:M/C:C/I:C/A:C",
"Cvss3": "AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-20",
"Href": "https://bdu.fstec.ru/vul/2024-00033",
"Impact": "High",
"Public": "20231218",
"CveID": "BDU:2024-00033"
},
{
"Cvss": "AV:N/AC:H/Au:N/C:C/I:C/A:C",
"Cvss3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-754",
"Href": "https://bdu.fstec.ru/vul/2024-00645",
"Impact": "High",
"Public": "20231218",
"CveID": "BDU:2024-00645"
}
],
"Cves": [
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"Cwe": "CWE-565",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32725",
"Impact": "High",
"Public": "20231218",
"CveID": "CVE-2023-32725"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-754",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32726",
"Impact": "High",
"Public": "20231218",
"CveID": "CVE-2023-32726"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-20",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32727",
"Impact": "High",
"Public": "20231218",
"CveID": "CVE-2023-32727"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-94",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32728",
"Impact": "Critical",
"Public": "20231218",
"CveID": "CVE-2023-32728"
},
{
"Cvss3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"Cwe": "CWE-79",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-22119",
"Impact": "Low",
"Public": "20240209",
"CveID": "CVE-2024-22119"
}
],
"AffectedCpeList": {
"Cpe": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:5001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20243079001",
"Comment": "zabbix-agent is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079002",
"Comment": "zabbix-agent-sudo is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079003",
"Comment": "zabbix-agent2 is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079004",
"Comment": "zabbix-common is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079005",
"Comment": "zabbix-common-database-mysql is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079006",
"Comment": "zabbix-common-database-pgsql is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079007",
"Comment": "zabbix-common-database-sqlite3 is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079008",
"Comment": "zabbix-contrib is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079009",
"Comment": "zabbix-doc is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079010",
"Comment": "zabbix-java-gateway is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079011",
"Comment": "zabbix-phpfrontend-apache2 is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079012",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.1 is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079013",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.2 is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079014",
"Comment": "zabbix-phpfrontend-engine is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079015",
"Comment": "zabbix-phpfrontend-php8.1 is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079016",
"Comment": "zabbix-phpfrontend-php8.2 is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079017",
"Comment": "zabbix-proxy is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079018",
"Comment": "zabbix-proxy-common is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079019",
"Comment": "zabbix-proxy-pgsql is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079020",
"Comment": "zabbix-server-common is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079021",
"Comment": "zabbix-server-mysql is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079022",
"Comment": "zabbix-server-pgsql is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079023",
"Comment": "zabbix-source is earlier than 1:6.0.27-alt0.c10f2.1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20243079024",
"Comment": "zabbix-web-service is earlier than 1:6.0.27-alt0.c10f2.1"
}
]
}
]
}
}
]
}

172
oval/c10f2/ALT-PU-2024-3079/objects.json Normal file
View File

@ -0,0 +1,172 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:5001",
"Version": "1",
"comment": "Evaluate `/etc/os-release` file content",
"Path": {
"dataType": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RpmInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:20243079001",
"Version": "1",
"comment": "zabbix-agent is installed",
"Name": "zabbix-agent"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079002",
"Version": "1",
"comment": "zabbix-agent-sudo is installed",
"Name": "zabbix-agent-sudo"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079003",
"Version": "1",
"comment": "zabbix-agent2 is installed",
"Name": "zabbix-agent2"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079004",
"Version": "1",
"comment": "zabbix-common is installed",
"Name": "zabbix-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079005",
"Version": "1",
"comment": "zabbix-common-database-mysql is installed",
"Name": "zabbix-common-database-mysql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079006",
"Version": "1",
"comment": "zabbix-common-database-pgsql is installed",
"Name": "zabbix-common-database-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079007",
"Version": "1",
"comment": "zabbix-common-database-sqlite3 is installed",
"Name": "zabbix-common-database-sqlite3"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079008",
"Version": "1",
"comment": "zabbix-contrib is installed",
"Name": "zabbix-contrib"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079009",
"Version": "1",
"comment": "zabbix-doc is installed",
"Name": "zabbix-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079010",
"Version": "1",
"comment": "zabbix-java-gateway is installed",
"Name": "zabbix-java-gateway"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079011",
"Version": "1",
"comment": "zabbix-phpfrontend-apache2 is installed",
"Name": "zabbix-phpfrontend-apache2"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079012",
"Version": "1",
"comment": "zabbix-phpfrontend-apache2-mod_php8.1 is installed",
"Name": "zabbix-phpfrontend-apache2-mod_php8.1"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079013",
"Version": "1",
"comment": "zabbix-phpfrontend-apache2-mod_php8.2 is installed",
"Name": "zabbix-phpfrontend-apache2-mod_php8.2"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079014",
"Version": "1",
"comment": "zabbix-phpfrontend-engine is installed",
"Name": "zabbix-phpfrontend-engine"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079015",
"Version": "1",
"comment": "zabbix-phpfrontend-php8.1 is installed",
"Name": "zabbix-phpfrontend-php8.1"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079016",
"Version": "1",
"comment": "zabbix-phpfrontend-php8.2 is installed",
"Name": "zabbix-phpfrontend-php8.2"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079017",
"Version": "1",
"comment": "zabbix-proxy is installed",
"Name": "zabbix-proxy"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079018",
"Version": "1",
"comment": "zabbix-proxy-common is installed",
"Name": "zabbix-proxy-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079019",
"Version": "1",
"comment": "zabbix-proxy-pgsql is installed",
"Name": "zabbix-proxy-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079020",
"Version": "1",
"comment": "zabbix-server-common is installed",
"Name": "zabbix-server-common"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079021",
"Version": "1",
"comment": "zabbix-server-mysql is installed",
"Name": "zabbix-server-mysql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079022",
"Version": "1",
"comment": "zabbix-server-pgsql is installed",
"Name": "zabbix-server-pgsql"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079023",
"Version": "1",
"comment": "zabbix-source is installed",
"Name": "zabbix-source"
},
{
"ID": "oval:org.altlinux.errata:obj:20243079024",
"Version": "1",
"comment": "zabbix-web-service is installed",
"Name": "zabbix-web-service"
}
]
}

23
oval/c10f2/ALT-PU-2024-3079/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:5001",
"Version": "1",
"Text": {}
}
],
"RpmInfoState": [
{
"ID": "oval:org.altlinux.errata:ste:20243079001",
"Version": "1",
"Comment": "package EVR is earlier than 1:6.0.27-alt0.c10f2.1",
"Arch": {},
"Evr": {
"Text": "1:6.0.27-alt0.c10f2.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

306
oval/c10f2/ALT-PU-2024-3079/tests.json Normal file
View File

@ -0,0 +1,306 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:5001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f2' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:5001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:5001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:20243079001",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079002",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent-sudo is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079003",
"Version": "1",
"Check": "all",
"Comment": "zabbix-agent2 is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079004",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079005",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-mysql is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079006",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-pgsql is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079007",
"Version": "1",
"Check": "all",
"Comment": "zabbix-common-database-sqlite3 is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079008",
"Version": "1",
"Check": "all",
"Comment": "zabbix-contrib is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079009",
"Version": "1",
"Check": "all",
"Comment": "zabbix-doc is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079010",
"Version": "1",
"Check": "all",
"Comment": "zabbix-java-gateway is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079011",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2 is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079012",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.1 is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079013",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-apache2-mod_php8.2 is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079014",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-engine is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079014"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079015",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-php8.1 is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079015"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079016",
"Version": "1",
"Check": "all",
"Comment": "zabbix-phpfrontend-php8.2 is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079016"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079017",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079017"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079018",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy-common is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079018"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079019",
"Version": "1",
"Check": "all",
"Comment": "zabbix-proxy-pgsql is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079019"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079020",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-common is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079020"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079021",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-mysql is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079021"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079022",
"Version": "1",
"Check": "all",
"Comment": "zabbix-server-pgsql is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079022"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079023",
"Version": "1",
"Check": "all",
"Comment": "zabbix-source is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079023"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:20243079024",
"Version": "1",
"Check": "all",
"Comment": "zabbix-web-service is earlier than 1:6.0.27-alt0.c10f2.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:20243079024"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:20243079001"
}
}
]
}

2
oval/p10/ALT-PU-2022-1421/definitions.json
View File

@ -2340,7 +2340,7 @@
{
"Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-763",
"Cwe": "CWE-416, CWE-763",
"Href": "https://bdu.fstec.ru/vul/2023-00158",
"Impact": "High",
"Public": "20210221",

2
oval/p10/ALT-PU-2023-1903/definitions.json
View File

@ -40613,7 +40613,7 @@
"CveID": "BDU:2023-00700"
},
{
"Cvss": "AV:N/AC:H/Au:N/C:C/I:N/A:N",
"Cvss": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"Cwe": "CWE-610, CWE-662",
"Href": "https://bdu.fstec.ru/vul/2023-00749",

2
oval/p10/ALT-PU-2023-4894/definitions.json
View File

@ -4816,7 +4816,7 @@
"CveID": "BDU:2023-00747"
},
{
"Cvss": "AV:N/AC:H/Au:N/C:C/I:N/A:N",
"Cvss": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"Cwe": "CWE-610, CWE-662",
"Href": "https://bdu.fstec.ru/vul/2023-00749",

2
oval/p10/ALT-PU-2023-7682/definitions.json
View File

@ -542,7 +542,7 @@
"CveID": "BDU:2023-00631"
},
{
"Cvss": "AV:N/AC:H/Au:N/C:C/I:N/A:N",
"Cvss": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"Cvss3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"Cwe": "CWE-610, CWE-662",
"Href": "https://bdu.fstec.ru/vul/2023-00749",

2
oval/p10/ALT-PU-2023-8227/definitions.json
View File

File diff suppressed because one or more lines are too long

2
oval/p9/ALT-PU-2021-1896/definitions.json
View File

@ -1107,7 +1107,7 @@
{
"Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-763",
"Cwe": "CWE-416, CWE-763",
"Href": "https://bdu.fstec.ru/vul/2023-00158",
"Impact": "High",
"Public": "20210221",

2
oval/p9/ALT-PU-2021-3481/definitions.json
View File

@ -621,7 +621,7 @@
{
"Cvss": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"Cvss3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"Cwe": "CWE-763",
"Cwe": "CWE-416, CWE-763",
"Href": "https://bdu.fstec.ru/vul/2023-00158",
"Impact": "High",
"Public": "20210221",