ALT Vulnerability

2024-05-17 15:02:22 +00:00 · 2024-05-17 15:02:22 +00:00 · c4de54f0eb
commit c4de54f0eb
parent 3ceb744749
16 changed files with 1014 additions and 0 deletions
--- a/oval/c10f1/ALT-PU-2024-7758/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-7758/definitions.json
@ -0,0 +1,132 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:20247758",
+      "Version": "oval:org.altlinux.errata:def:20247758",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-7758: package `gnutls30` update to version 3.6.16-alt6",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-7758",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-7758",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "BDU:2022-01898",
+            "RefURL": "https://bdu.fstec.ru/vul/2022-01898",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "CVE-2021-4209",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-4209",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades gnutls30 to version 3.6.16-alt6. \nSecurity Fix(es):\n\n * BDU:2022-01898: Уязвимость реализации функции wrap_nettle_hash_fast() криптографической библиотеки GnuTLS, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2021-4209: A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy, providing zero-length input may cause undefined behavior. This flaw leads to a denial of service after authentication in rare circumstances.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "Low",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-05-17"
+          },
+          "Updated": {
+            "Date": "2024-05-17"
+          },
+          "BDUs": [
+            {
+              "ID": "BDU:2022-01898",
+              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
+              "CVSS3": "AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
+              "CWE": "CWE-476",
+              "Href": "https://bdu.fstec.ru/vul/2022-01898",
+              "Impact": "Low",
+              "Public": "20211222"
+            }
+          ],
+          "CVEs": [
+            {
+              "ID": "CVE-2021-4209",
+              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
+              "CWE": "CWE-476",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-4209",
+              "Impact": "Low",
+              "Public": "20220824"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758001",
+                "Comment": "gnutls-utils is earlier than 0:3.6.16-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758002",
+                "Comment": "gnutls30-devel-doc is earlier than 0:3.6.16-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758003",
+                "Comment": "libgnutls-devel is earlier than 0:3.6.16-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758004",
+                "Comment": "libgnutls-guile is earlier than 0:3.6.16-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758005",
+                "Comment": "libgnutls-openssl-devel is earlier than 0:3.6.16-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758006",
+                "Comment": "libgnutls27-openssl is earlier than 0:3.6.16-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758007",
+                "Comment": "libgnutls30 is earlier than 0:3.6.16-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758008",
+                "Comment": "libgnutlsxx-devel is earlier than 0:3.6.16-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247758009",
+                "Comment": "libgnutlsxx28 is earlier than 0:3.6.16-alt6"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7758/objects.json
+++ b/oval/c10f1/ALT-PU-2024-7758/objects.json
@ -0,0 +1,82 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758001",
+      "Version": "1",
+      "Comment": "gnutls-utils is installed",
+      "Name": "gnutls-utils"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758002",
+      "Version": "1",
+      "Comment": "gnutls30-devel-doc is installed",
+      "Name": "gnutls30-devel-doc"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758003",
+      "Version": "1",
+      "Comment": "libgnutls-devel is installed",
+      "Name": "libgnutls-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758004",
+      "Version": "1",
+      "Comment": "libgnutls-guile is installed",
+      "Name": "libgnutls-guile"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758005",
+      "Version": "1",
+      "Comment": "libgnutls-openssl-devel is installed",
+      "Name": "libgnutls-openssl-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758006",
+      "Version": "1",
+      "Comment": "libgnutls27-openssl is installed",
+      "Name": "libgnutls27-openssl"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758007",
+      "Version": "1",
+      "Comment": "libgnutls30 is installed",
+      "Name": "libgnutls30"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758008",
+      "Version": "1",
+      "Comment": "libgnutlsxx-devel is installed",
+      "Name": "libgnutlsxx-devel"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247758009",
+      "Version": "1",
+      "Comment": "libgnutlsxx28 is installed",
+      "Name": "libgnutlsxx28"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7758/states.json
+++ b/oval/c10f1/ALT-PU-2024-7758/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:20247758001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:3.6.16-alt6",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:3.6.16-alt6",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7758/tests.json
+++ b/oval/c10f1/ALT-PU-2024-7758/tests.json
@ -0,0 +1,126 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "gnutls-utils is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "gnutls30-devel-doc is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "libgnutls-devel is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758004",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "libgnutls-guile is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758004"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758005",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "libgnutls-openssl-devel is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758005"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758006",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "libgnutls27-openssl is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758006"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758007",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "libgnutls30 is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758007"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758008",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "libgnutlsxx-devel is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758008"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247758009",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "libgnutlsxx28 is earlier than 0:3.6.16-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247758009"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247758001"
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7863/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-7863/definitions.json
@ -0,0 +1,127 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:20247863",
+      "Version": "oval:org.altlinux.errata:def:20247863",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-7863: package `grafana` update to version 10.2.2-alt1.1",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-7863",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-7863",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "BDU:2024-02572",
+            "RefURL": "https://bdu.fstec.ru/vul/2024-02572",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "BDU:2024-02599",
+            "RefURL": "https://bdu.fstec.ru/vul/2024-02599",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "CVE-2023-4399",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-4399",
+            "Source": "CVE"
+          },
+          {
+            "RefID": "CVE-2023-4822",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-4822",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades grafana to version 10.2.2-alt1.1. \nSecurity Fix(es):\n\n * BDU:2024-02572: Уязвимость платформы для мониторинга и наблюдения Grafana, связанная с разрешительный список разрешенных входов, позволяющая нарушителю повысить свои привилегии\n\n * BDU:2024-02599: Уязвимость платформы для мониторинга и наблюдения Grafana, связанная с недостатками списка контроля доступом (ACL), позволяющая нарушителю обойти существующие ограничения доступа\n\n * CVE-2023-4399: Grafana is an open-source platform for monitoring and observability. \n\nIn Grafana Enterprise, Request security is a deny list that allows admins to configure Grafana in a way so that the instance doesn’t call specific hosts.\n\nHowever, the restriction can be bypassed used punycode encoding of the characters in the request address.\n\n\n\n * CVE-2023-4822: Grafana is an open-source platform for monitoring and observability. The vulnerability impacts Grafana instances with several organizations, and allows a user with Organization Admin permissions in one organization to change the permissions associated with Organization Viewer, Organization Editor and Organization Admin roles in all organizations.\n\nIt also allows an Organization Admin to assign or revoke any permissions that they have to any user globally.\n\nThis means that any Organization Admin can elevate their own permissions in any organization that they are already a member of, or elevate or restrict the permissions of any other user.\n\nThe vulnerability does not allow a user to become a member of an organization that they are not already a member of, or to add any other users to an organization that the current user is not a member of.\n\n",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-05-17"
+          },
+          "Updated": {
+            "Date": "2024-05-17"
+          },
+          "BDUs": [
+            {
+              "ID": "BDU:2024-02572",
+              "CVSS": "AV:N/AC:L/Au:M/C:C/I:C/A:C",
+              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-269",
+              "Href": "https://bdu.fstec.ru/vul/2024-02572",
+              "Impact": "High",
+              "Public": "20231016"
+            },
+            {
+              "ID": "BDU:2024-02599",
+              "CVSS": "AV:N/AC:L/Au:M/C:C/I:C/A:C",
+              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-183",
+              "Href": "https://bdu.fstec.ru/vul/2024-02599",
+              "Impact": "High",
+              "Public": "20231017"
+            }
+          ],
+          "CVEs": [
+            {
+              "ID": "CVE-2023-4399",
+              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "NVD-CWE-noinfo",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-4399",
+              "Impact": "High",
+              "Public": "20231017"
+            },
+            {
+              "ID": "CVE-2023-4822",
+              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "NVD-CWE-noinfo",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-4822",
+              "Impact": "High",
+              "Public": "20231016"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247863001",
+                "Comment": "grafana is earlier than 0:10.2.2-alt1.1"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7863/objects.json
+++ b/oval/c10f1/ALT-PU-2024-7863/objects.json
@ -0,0 +1,34 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247863001",
+      "Version": "1",
+      "Comment": "grafana is installed",
+      "Name": "grafana"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7863/states.json
+++ b/oval/c10f1/ALT-PU-2024-7863/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:20247863001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:10.2.2-alt1.1",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:10.2.2-alt1.1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7863/tests.json
+++ b/oval/c10f1/ALT-PU-2024-7863/tests.json
@ -0,0 +1,30 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247863001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "grafana is earlier than 0:10.2.2-alt1.1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247863001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247863001"
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7869/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-7869/definitions.json
@ -0,0 +1,92 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:20247869",
+      "Version": "oval:org.altlinux.errata:def:20247869",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-7869: package `salt` update to version 3005.5-alt1",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-7869",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-7869",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "CVE-2024-22231",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-22231",
+            "Source": "CVE"
+          },
+          {
+            "RefID": "CVE-2024-22232",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-22232",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades salt to version 3005.5-alt1. \nSecurity Fix(es):\n\n * CVE-2024-22231: description unavailable\n\n * CVE-2024-22232: description unavailable",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "Low",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-05-17"
+          },
+          "Updated": {
+            "Date": "2024-05-17"
+          },
+          "BDUs": null,
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247869001",
+                "Comment": "python3-module-salt is earlier than 0:3005.5-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247869002",
+                "Comment": "salt-api is earlier than 0:3005.5-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247869003",
+                "Comment": "salt-master is earlier than 0:3005.5-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247869004",
+                "Comment": "salt-minion is earlier than 0:3005.5-alt1"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7869/objects.json
+++ b/oval/c10f1/ALT-PU-2024-7869/objects.json
@ -0,0 +1,52 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247869001",
+      "Version": "1",
+      "Comment": "python3-module-salt is installed",
+      "Name": "python3-module-salt"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247869002",
+      "Version": "1",
+      "Comment": "salt-api is installed",
+      "Name": "salt-api"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247869003",
+      "Version": "1",
+      "Comment": "salt-master is installed",
+      "Name": "salt-master"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247869004",
+      "Version": "1",
+      "Comment": "salt-minion is installed",
+      "Name": "salt-minion"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7869/states.json
+++ b/oval/c10f1/ALT-PU-2024-7869/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:20247869001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:3005.5-alt1",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:3005.5-alt1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-7869/tests.json
+++ b/oval/c10f1/ALT-PU-2024-7869/tests.json
@ -0,0 +1,66 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247869001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "python3-module-salt is earlier than 0:3005.5-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247869001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247869001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247869002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "salt-api is earlier than 0:3005.5-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247869002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247869001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247869003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "salt-master is earlier than 0:3005.5-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247869003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247869001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247869004",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "salt-minion is earlier than 0:3005.5-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247869004"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247869001"
+      }
+    }
+  ]
+}
--- a/oval/c10f2/ALT-PU-2024-7851/definitions.json
+++ b/oval/c10f2/ALT-PU-2024-7851/definitions.json
@ -0,0 +1,81 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:20247851",
+      "Version": "oval:org.altlinux.errata:def:20247851",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-7851: package `mdadm` update to version 4.2-alt5",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f2"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-7851",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-7851",
+            "Source": "ALTPU"
+          }
+        ],
+        "Description": "This update upgrades mdadm to version 4.2-alt5. \nSecurity Fix(es):\n\n * #48634: Не отображаются SATA-диски, включенные в RAID (Rapid Storage Technology)",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "Low",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-05-17"
+          },
+          "Updated": {
+            "Date": "2024-05-17"
+          },
+          "BDUs": null,
+          "Bugzilla": [
+            {
+              "ID": "48634",
+              "Href": "https://bugzilla.altlinux.org/48634",
+              "Data": "Не отображаются SATA-диски, включенные в RAID (Rapid Storage Technology)"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:5001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247851001",
+                "Comment": "mdadm is earlier than 0:4.2-alt5"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247851002",
+                "Comment": "mdadm-doc is earlier than 0:4.2-alt5"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:20247851003",
+                "Comment": "mdadm-tool is earlier than 0:4.2-alt5"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f2/ALT-PU-2024-7851/objects.json
+++ b/oval/c10f2/ALT-PU-2024-7851/objects.json
@ -0,0 +1,46 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:5001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247851001",
+      "Version": "1",
+      "Comment": "mdadm is installed",
+      "Name": "mdadm"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247851002",
+      "Version": "1",
+      "Comment": "mdadm-doc is installed",
+      "Name": "mdadm-doc"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:20247851003",
+      "Version": "1",
+      "Comment": "mdadm-tool is installed",
+      "Name": "mdadm-tool"
+    }
+  ]
+}
--- a/oval/c10f2/ALT-PU-2024-7851/states.json
+++ b/oval/c10f2/ALT-PU-2024-7851/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:5001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:20247851001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:4.2-alt5",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:4.2-alt5",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f2/ALT-PU-2024-7851/tests.json
+++ b/oval/c10f2/ALT-PU-2024-7851/tests.json
@ -0,0 +1,54 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:5001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f2' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:5001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:5001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247851001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "mdadm is earlier than 0:4.2-alt5",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247851001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247851001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247851002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "mdadm-doc is earlier than 0:4.2-alt5",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247851002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247851001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:20247851003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "mdadm-tool is earlier than 0:4.2-alt5",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:20247851003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:20247851001"
+      }
+    }
+  ]
+}