ALT Vulnerability

2024-11-12 03:05:37 +00:00 · 2024-11-12 03:05:37 +00:00 · dee2647e1b
commit dee2647e1b
parent f0c5b06d5b
36 changed files with 2339 additions and 0 deletions
--- a/oval/c10f1/ALT-PU-2024-15187/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-15187/definitions.json
@ -0,0 +1,85 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202415187",
+      "Version": "oval:org.altlinux.errata:def:202415187",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-15187: package `python3-module-mechanize` update to version 0.4.9-alt1",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-15187",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-15187",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "CVE-2021-32837",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-32837",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades python3-module-mechanize to version 0.4.9-alt1. \nSecurity Fix(es):\n\n * CVE-2021-32837: mechanize, a library for automatically interacting with HTTP web servers, contains a regular expression that is vulnerable to regular expression denial of service (ReDoS) prior to version 0.4.6. If a web server responds in a malicious way, then mechanize could crash. Version 0.4.6 has a patch for the issue.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-11-11"
+          },
+          "Updated": {
+            "Date": "2024-11-11"
+          },
+          "BDUs": null,
+          "CVEs": [
+            {
+              "ID": "CVE-2021-32837",
+              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+              "CWE": "CWE-1333",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-32837",
+              "Impact": "High",
+              "Public": "20230117"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202415187001",
+                "Comment": "python3-module-mechanize is earlier than 0:0.4.9-alt1"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15187/objects.json
+++ b/oval/c10f1/ALT-PU-2024-15187/objects.json
@ -0,0 +1,34 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202415187001",
+      "Version": "1",
+      "Comment": "python3-module-mechanize is installed",
+      "Name": "python3-module-mechanize"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15187/states.json
+++ b/oval/c10f1/ALT-PU-2024-15187/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202415187001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:0.4.9-alt1",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:0.4.9-alt1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15187/tests.json
+++ b/oval/c10f1/ALT-PU-2024-15187/tests.json
@ -0,0 +1,30 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202415187001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "python3-module-mechanize is earlier than 0:0.4.9-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202415187001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202415187001"
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15269/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-15269/definitions.json
@ -0,0 +1,90 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202415269",
+      "Version": "oval:org.altlinux.errata:def:202415269",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-15269: package `python3-module-celery` update to version 5.3.6-alt1",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-15269",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-15269",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "CVE-2021-23727",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-23727",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades python3-module-celery to version 5.3.6-alt1. \nSecurity Fix(es):\n\n * CVE-2021-23727: This affects the package celery before 5.2.2. It by default trusts the messages and metadata stored in backends (result stores). When reading task metadata from the backend, the data is deserialized. Given that an attacker can gain access to, or somehow manipulate the metadata within a celery backend, they could trigger a stored command injection vulnerability and potentially gain further access to the system.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-11-11"
+          },
+          "Updated": {
+            "Date": "2024-11-11"
+          },
+          "BDUs": null,
+          "CVEs": [
+            {
+              "ID": "CVE-2021-23727",
+              "CVSS": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
+              "CVSS3": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-77",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-23727",
+              "Impact": "High",
+              "Public": "20211229"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202415269001",
+                "Comment": "python3-module-celery is earlier than 0:5.3.6-alt1"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202415269002",
+                "Comment": "python3-module-celery-sphinx is earlier than 0:5.3.6-alt1"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15269/objects.json
+++ b/oval/c10f1/ALT-PU-2024-15269/objects.json
@ -0,0 +1,40 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202415269001",
+      "Version": "1",
+      "Comment": "python3-module-celery is installed",
+      "Name": "python3-module-celery"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202415269002",
+      "Version": "1",
+      "Comment": "python3-module-celery-sphinx is installed",
+      "Name": "python3-module-celery-sphinx"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15269/states.json
+++ b/oval/c10f1/ALT-PU-2024-15269/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202415269001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:5.3.6-alt1",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:5.3.6-alt1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15269/tests.json
+++ b/oval/c10f1/ALT-PU-2024-15269/tests.json
@ -0,0 +1,42 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202415269001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "python3-module-celery is earlier than 0:5.3.6-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202415269001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202415269001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202415269002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "python3-module-celery-sphinx is earlier than 0:5.3.6-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202415269002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202415269001"
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15271/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-15271/definitions.json
@ -0,0 +1,125 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202415271",
+      "Version": "oval:org.altlinux.errata:def:202415271",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-15271: package `grafana` update to version 11.2.2-alt2",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-15271",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-15271",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "BDU:2024-02816",
+            "RefURL": "https://bdu.fstec.ru/vul/2024-02816",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "BDU:2024-07696",
+            "RefURL": "https://bdu.fstec.ru/vul/2024-07696",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "CVE-2023-6152",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-6152",
+            "Source": "CVE"
+          },
+          {
+            "RefID": "CVE-2024-8118",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-8118",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades grafana to version 11.2.2-alt2. \nSecurity Fix(es):\n\n * BDU:2024-02816: Уязвимость базовой системы аутентификации веб-инструмента представления данных Grafana, позволяющая нарушителю обойти проверку электронной почты и помешать законным владельцам электронной почты зарегистрироваться\n\n * BDU:2024-07696: Уязвимость интерфейса API Endpoint платформы для мониторинга и наблюдения Grafana, позволяющая нарушителю повысить свои привилегии\n\n * CVE-2023-6152: A user changing their email after signing up and verifying it can change it without verification in profile settings.\n\nThe configuration option \"verify_email_enabled\" will only validate email only on sign up.\n\n\n\n * CVE-2024-8118: In Grafana, the wrong permission is applied to the alert rule write API endpoint, allowing users with permission to write external alert instances to also write alert rules.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "Low",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-11-11"
+          },
+          "Updated": {
+            "Date": "2024-11-11"
+          },
+          "BDUs": [
+            {
+              "ID": "BDU:2024-02816",
+              "CVSS": "AV:N/AC:L/Au:S/C:N/I:P/A:P",
+              "CVSS3": "AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
+              "CWE": "CWE-863",
+              "Href": "https://bdu.fstec.ru/vul/2024-02816",
+              "Impact": "Low",
+              "Public": "20231110"
+            },
+            {
+              "ID": "BDU:2024-07696",
+              "CVSS": "AV:N/AC:H/Au:S/C:P/I:P/A:P",
+              "CVSS3": "AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
+              "CWE": "CWE-653",
+              "Href": "https://bdu.fstec.ru/vul/2024-07696",
+              "Impact": "Low",
+              "Public": "20240926"
+            }
+          ],
+          "CVEs": [
+            {
+              "ID": "CVE-2023-6152",
+              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
+              "CWE": "CWE-863",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-6152",
+              "Impact": "Low",
+              "Public": "20240213"
+            },
+            {
+              "ID": "CVE-2024-8118",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-8118",
+              "Impact": "None",
+              "Public": "20240926"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202415271001",
+                "Comment": "grafana is earlier than 0:11.2.2-alt2"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15271/objects.json
+++ b/oval/c10f1/ALT-PU-2024-15271/objects.json
@ -0,0 +1,34 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202415271001",
+      "Version": "1",
+      "Comment": "grafana is installed",
+      "Name": "grafana"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15271/states.json
+++ b/oval/c10f1/ALT-PU-2024-15271/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202415271001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:11.2.2-alt2",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:11.2.2-alt2",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15271/tests.json
+++ b/oval/c10f1/ALT-PU-2024-15271/tests.json
@ -0,0 +1,30 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202415271001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "grafana is earlier than 0:11.2.2-alt2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202415271001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202415271001"
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15273/definitions.json
+++ b/oval/c10f1/ALT-PU-2024-15273/definitions.json
@ -0,0 +1,100 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202415273",
+      "Version": "oval:org.altlinux.errata:def:202415273",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-15273: package `tcpdump` update to version 4.99.4-alt1",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch c10f1"
+            ],
+            "Products": [
+              "ALT SP Workstation",
+              "ALT SP Server"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-15273",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-15273",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "CVE-2018-16301",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-16301",
+            "Source": "CVE"
+          },
+          {
+            "RefID": "CVE-2020-8037",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2020-8037",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades tcpdump to version 4.99.4-alt1. \nSecurity Fix(es):\n\n * CVE-2018-16301: The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump.\n\n * CVE-2020-8037: The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-11-11"
+          },
+          "Updated": {
+            "Date": "2024-11-11"
+          },
+          "BDUs": null,
+          "CVEs": [
+            {
+              "ID": "CVE-2018-16301",
+              "CVSS": "AV:L/AC:M/Au:N/C:P/I:P/A:P",
+              "CVSS3": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-120",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-16301",
+              "Impact": "High",
+              "Public": "20191003"
+            },
+            {
+              "ID": "CVE-2020-8037",
+              "CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
+              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+              "CWE": "CWE-770",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2020-8037",
+              "Impact": "High",
+              "Public": "20201104"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:spworkstation:10",
+              "cpe:/o:alt:spserver:10"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:4001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202415273001",
+                "Comment": "tcpdump is earlier than 1:4.99.4-alt1"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15273/objects.json
+++ b/oval/c10f1/ALT-PU-2024-15273/objects.json
@ -0,0 +1,34 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:4001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202415273001",
+      "Version": "1",
+      "Comment": "tcpdump is installed",
+      "Name": "tcpdump"
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15273/states.json
+++ b/oval/c10f1/ALT-PU-2024-15273/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:4001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202415273001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 1:4.99.4-alt1",
+      "Arch": {},
+      "EVR": {
+        "Text": "1:4.99.4-alt1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/c10f1/ALT-PU-2024-15273/tests.json
+++ b/oval/c10f1/ALT-PU-2024-15273/tests.json
@ -0,0 +1,30 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:4001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'c10f1' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:4001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:4001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202415273001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "tcpdump is earlier than 1:4.99.4-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202415273001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202415273001"
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14580/definitions.json
+++ b/oval/p10/ALT-PU-2024-14580/definitions.json
@ -0,0 +1,101 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202414580",
+      "Version": "oval:org.altlinux.errata:def:202414580",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-14580: package `glpi-agent` update to version 1.11-alt1",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch p10"
+            ],
+            "Products": [
+              "ALT Server",
+              "ALT Virtualization Server",
+              "ALT Workstation",
+              "ALT Workstation K",
+              "ALT Education",
+              "Simply Linux",
+              "Starterkit"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-14580",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-14580",
+            "Source": "ALTPU"
+          }
+        ],
+        "Description": "This update upgrades glpi-agent to version 1.11-alt1. \nSecurity Fix(es):\n\n * #50882: glpi-agent ошибка Can't load XML::LibXML",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "Low",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-11-11"
+          },
+          "Updated": {
+            "Date": "2024-11-11"
+          },
+          "BDUs": null,
+          "Bugzilla": [
+            {
+              "ID": "50882",
+              "Href": "https://bugzilla.altlinux.org/50882",
+              "Data": "glpi-agent ошибка Can't load XML::LibXML"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:kworkstation:10",
+              "cpe:/o:alt:workstation:10",
+              "cpe:/o:alt:server:10",
+              "cpe:/o:alt:server-v:10",
+              "cpe:/o:alt:education:10",
+              "cpe:/o:alt:slinux:10",
+              "cpe:/o:alt:starterkit:p10",
+              "cpe:/o:alt:kworkstation:10.1",
+              "cpe:/o:alt:workstation:10.1",
+              "cpe:/o:alt:server:10.1",
+              "cpe:/o:alt:server-v:10.1",
+              "cpe:/o:alt:education:10.1",
+              "cpe:/o:alt:slinux:10.1",
+              "cpe:/o:alt:starterkit:10.1",
+              "cpe:/o:alt:kworkstation:10.2",
+              "cpe:/o:alt:workstation:10.2",
+              "cpe:/o:alt:server:10.2",
+              "cpe:/o:alt:server-v:10.2",
+              "cpe:/o:alt:education:10.2",
+              "cpe:/o:alt:slinux:10.2",
+              "cpe:/o:alt:starterkit:10.2"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:2001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414580001",
+                "Comment": "glpi-agent is earlier than 0:1.11-alt1"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14580/objects.json
+++ b/oval/p10/ALT-PU-2024-14580/objects.json
@ -0,0 +1,34 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:2001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414580001",
+      "Version": "1",
+      "Comment": "glpi-agent is installed",
+      "Name": "glpi-agent"
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14580/states.json
+++ b/oval/p10/ALT-PU-2024-14580/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:2001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414580001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:1.11-alt1",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:1.11-alt1",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14580/tests.json
+++ b/oval/p10/ALT-PU-2024-14580/tests.json
@ -0,0 +1,30 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:2001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'p10' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:2001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:2001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414580001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "glpi-agent is earlier than 0:1.11-alt1",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414580001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414580001"
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14929/definitions.json
+++ b/oval/p10/ALT-PU-2024-14929/definitions.json
@ -0,0 +1,148 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202414929",
+      "Version": "oval:org.altlinux.errata:def:202414929",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-14929: package `xorg-server` update to version 1.20.14-alt14",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch p10"
+            ],
+            "Products": [
+              "ALT Server",
+              "ALT Virtualization Server",
+              "ALT Workstation",
+              "ALT Workstation K",
+              "ALT Education",
+              "Simply Linux",
+              "Starterkit"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-14929",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-14929",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "BDU:2024-09084",
+            "RefURL": "https://bdu.fstec.ru/vul/2024-09084",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "CVE-2024-9632",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-9632",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades xorg-server to version 1.20.14-alt14. \nSecurity Fix(es):\n\n * BDU:2024-09084: Уязвимость функции _XkbSetCompatMap реализации сервера X Window System X.Org Server, позволяющая нарушителю повысить свои привилегии\n\n * CVE-2024-9632: A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker may be able to trigger a buffer overflow condition via a specially crafted payload, leading to denial of service or local privilege escalation in distributions where the X.org server is run with root privileges.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-11-11"
+          },
+          "Updated": {
+            "Date": "2024-11-11"
+          },
+          "BDUs": [
+            {
+              "ID": "BDU:2024-09084",
+              "CVSS": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
+              "CVSS3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-122",
+              "Href": "https://bdu.fstec.ru/vul/2024-09084",
+              "Impact": "High",
+              "Public": "20241008"
+            }
+          ],
+          "CVEs": [
+            {
+              "ID": "CVE-2024-9632",
+              "CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-122",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-9632",
+              "Impact": "High",
+              "Public": "20241030"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:kworkstation:10",
+              "cpe:/o:alt:workstation:10",
+              "cpe:/o:alt:server:10",
+              "cpe:/o:alt:server-v:10",
+              "cpe:/o:alt:education:10",
+              "cpe:/o:alt:slinux:10",
+              "cpe:/o:alt:starterkit:p10",
+              "cpe:/o:alt:kworkstation:10.1",
+              "cpe:/o:alt:workstation:10.1",
+              "cpe:/o:alt:server:10.1",
+              "cpe:/o:alt:server-v:10.1",
+              "cpe:/o:alt:education:10.1",
+              "cpe:/o:alt:slinux:10.1",
+              "cpe:/o:alt:starterkit:10.1",
+              "cpe:/o:alt:kworkstation:10.2",
+              "cpe:/o:alt:workstation:10.2",
+              "cpe:/o:alt:server:10.2",
+              "cpe:/o:alt:server-v:10.2",
+              "cpe:/o:alt:education:10.2",
+              "cpe:/o:alt:slinux:10.2",
+              "cpe:/o:alt:starterkit:10.2"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:2001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414929001",
+                "Comment": "xorg-sdk is earlier than 2:1.20.14-alt14"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414929002",
+                "Comment": "xorg-server is earlier than 2:1.20.14-alt14"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414929003",
+                "Comment": "xorg-server-common is earlier than 2:1.20.14-alt14"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414929004",
+                "Comment": "xorg-xdmx is earlier than 2:1.20.14-alt14"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414929005",
+                "Comment": "xorg-xephyr is earlier than 2:1.20.14-alt14"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414929006",
+                "Comment": "xorg-xnest is earlier than 2:1.20.14-alt14"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414929007",
+                "Comment": "xorg-xvfb is earlier than 2:1.20.14-alt14"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14929/objects.json
+++ b/oval/p10/ALT-PU-2024-14929/objects.json
@ -0,0 +1,70 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:2001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414929001",
+      "Version": "1",
+      "Comment": "xorg-sdk is installed",
+      "Name": "xorg-sdk"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414929002",
+      "Version": "1",
+      "Comment": "xorg-server is installed",
+      "Name": "xorg-server"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414929003",
+      "Version": "1",
+      "Comment": "xorg-server-common is installed",
+      "Name": "xorg-server-common"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414929004",
+      "Version": "1",
+      "Comment": "xorg-xdmx is installed",
+      "Name": "xorg-xdmx"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414929005",
+      "Version": "1",
+      "Comment": "xorg-xephyr is installed",
+      "Name": "xorg-xephyr"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414929006",
+      "Version": "1",
+      "Comment": "xorg-xnest is installed",
+      "Name": "xorg-xnest"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414929007",
+      "Version": "1",
+      "Comment": "xorg-xvfb is installed",
+      "Name": "xorg-xvfb"
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14929/states.json
+++ b/oval/p10/ALT-PU-2024-14929/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:2001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414929001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 2:1.20.14-alt14",
+      "Arch": {},
+      "EVR": {
+        "Text": "2:1.20.14-alt14",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14929/tests.json
+++ b/oval/p10/ALT-PU-2024-14929/tests.json
@ -0,0 +1,102 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:2001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'p10' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:2001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:2001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414929001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-sdk is earlier than 2:1.20.14-alt14",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414929001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414929001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414929002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-server is earlier than 2:1.20.14-alt14",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414929002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414929001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414929003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-server-common is earlier than 2:1.20.14-alt14",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414929003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414929001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414929004",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-xdmx is earlier than 2:1.20.14-alt14",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414929004"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414929001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414929005",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-xephyr is earlier than 2:1.20.14-alt14",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414929005"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414929001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414929006",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-xnest is earlier than 2:1.20.14-alt14",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414929006"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414929001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414929007",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-xvfb is earlier than 2:1.20.14-alt14",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414929007"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414929001"
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14931/definitions.json
+++ b/oval/p10/ALT-PU-2024-14931/definitions.json
@ -0,0 +1,128 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202414931",
+      "Version": "oval:org.altlinux.errata:def:202414931",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-14931: package `xorg-xwayland` update to version 23.1.1-alt6",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch p10"
+            ],
+            "Products": [
+              "ALT Server",
+              "ALT Virtualization Server",
+              "ALT Workstation",
+              "ALT Workstation K",
+              "ALT Education",
+              "Simply Linux",
+              "Starterkit"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-14931",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-14931",
+            "Source": "ALTPU"
+          },
+          {
+            "RefID": "BDU:2024-09084",
+            "RefURL": "https://bdu.fstec.ru/vul/2024-09084",
+            "Source": "BDU"
+          },
+          {
+            "RefID": "CVE-2024-9632",
+            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-9632",
+            "Source": "CVE"
+          }
+        ],
+        "Description": "This update upgrades xorg-xwayland to version 23.1.1-alt6. \nSecurity Fix(es):\n\n * BDU:2024-09084: Уязвимость функции _XkbSetCompatMap реализации сервера X Window System X.Org Server, позволяющая нарушителю повысить свои привилегии\n\n * CVE-2024-9632: A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker may be able to trigger a buffer overflow condition via a specially crafted payload, leading to denial of service or local privilege escalation in distributions where the X.org server is run with root privileges.",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "High",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-11-11"
+          },
+          "Updated": {
+            "Date": "2024-11-11"
+          },
+          "BDUs": [
+            {
+              "ID": "BDU:2024-09084",
+              "CVSS": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
+              "CVSS3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-122",
+              "Href": "https://bdu.fstec.ru/vul/2024-09084",
+              "Impact": "High",
+              "Public": "20241008"
+            }
+          ],
+          "CVEs": [
+            {
+              "ID": "CVE-2024-9632",
+              "CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+              "CWE": "CWE-122",
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-9632",
+              "Impact": "High",
+              "Public": "20241030"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:kworkstation:10",
+              "cpe:/o:alt:workstation:10",
+              "cpe:/o:alt:server:10",
+              "cpe:/o:alt:server-v:10",
+              "cpe:/o:alt:education:10",
+              "cpe:/o:alt:slinux:10",
+              "cpe:/o:alt:starterkit:p10",
+              "cpe:/o:alt:kworkstation:10.1",
+              "cpe:/o:alt:workstation:10.1",
+              "cpe:/o:alt:server:10.1",
+              "cpe:/o:alt:server-v:10.1",
+              "cpe:/o:alt:education:10.1",
+              "cpe:/o:alt:slinux:10.1",
+              "cpe:/o:alt:starterkit:10.1",
+              "cpe:/o:alt:kworkstation:10.2",
+              "cpe:/o:alt:workstation:10.2",
+              "cpe:/o:alt:server:10.2",
+              "cpe:/o:alt:server-v:10.2",
+              "cpe:/o:alt:education:10.2",
+              "cpe:/o:alt:slinux:10.2",
+              "cpe:/o:alt:starterkit:10.2"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:2001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414931001",
+                "Comment": "xorg-xwayland is earlier than 2:23.1.1-alt6"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202414931002",
+                "Comment": "xorg-xwayland-devel is earlier than 2:23.1.1-alt6"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14931/objects.json
+++ b/oval/p10/ALT-PU-2024-14931/objects.json
@ -0,0 +1,40 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:2001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414931001",
+      "Version": "1",
+      "Comment": "xorg-xwayland is installed",
+      "Name": "xorg-xwayland"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414931002",
+      "Version": "1",
+      "Comment": "xorg-xwayland-devel is installed",
+      "Name": "xorg-xwayland-devel"
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14931/states.json
+++ b/oval/p10/ALT-PU-2024-14931/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:2001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414931001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 2:23.1.1-alt6",
+      "Arch": {},
+      "EVR": {
+        "Text": "2:23.1.1-alt6",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14931/tests.json
+++ b/oval/p10/ALT-PU-2024-14931/tests.json
@ -0,0 +1,42 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:2001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'p10' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:2001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:2001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414931001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-xwayland is earlier than 2:23.1.1-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414931001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414931001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414931002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "xorg-xwayland-devel is earlier than 2:23.1.1-alt6",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414931002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414931001"
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14950/definitions.json
+++ b/oval/p10/ALT-PU-2024-14950/definitions.json
--- a/oval/p10/ALT-PU-2024-14950/objects.json
+++ b/oval/p10/ALT-PU-2024-14950/objects.json
@ -0,0 +1,46 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:2001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414950001",
+      "Version": "1",
+      "Comment": "edk2-efi-shell is installed",
+      "Name": "edk2-efi-shell"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414950002",
+      "Version": "1",
+      "Comment": "edk2-ovmf is installed",
+      "Name": "edk2-ovmf"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202414950003",
+      "Version": "1",
+      "Comment": "edk2-ovmf-ia32 is installed",
+      "Name": "edk2-ovmf-ia32"
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14950/states.json
+++ b/oval/p10/ALT-PU-2024-14950/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:2001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202414950001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:20240811-alt2",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:20240811-alt2",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-14950/tests.json
+++ b/oval/p10/ALT-PU-2024-14950/tests.json
@ -0,0 +1,54 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:2001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'p10' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:2001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:2001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414950001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "edk2-efi-shell is earlier than 0:20240811-alt2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414950001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414950001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414950002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "edk2-ovmf is earlier than 0:20240811-alt2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414950002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414950001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202414950003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "edk2-ovmf-ia32 is earlier than 0:20240811-alt2",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202414950003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202414950001"
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-15027/definitions.json
+++ b/oval/p10/ALT-PU-2024-15027/definitions.json
@ -0,0 +1,109 @@
+{
+  "Definition": [
+    {
+      "ID": "oval:org.altlinux.errata:def:202415027",
+      "Version": "oval:org.altlinux.errata:def:202415027",
+      "Class": "patch",
+      "Metadata": {
+        "Title": "ALT-PU-2024-15027: package `host2cat` update to version 1.01-alt8",
+        "AffectedList": [
+          {
+            "Family": "unix",
+            "Platforms": [
+              "ALT Linux branch p10"
+            ],
+            "Products": [
+              "ALT Server",
+              "ALT Virtualization Server",
+              "ALT Workstation",
+              "ALT Workstation K",
+              "ALT Education",
+              "Simply Linux",
+              "Starterkit"
+            ]
+          }
+        ],
+        "References": [
+          {
+            "RefID": "ALT-PU-2024-15027",
+            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-15027",
+            "Source": "ALTPU"
+          }
+        ],
+        "Description": "This update upgrades host2cat to version 1.01-alt8. \nSecurity Fix(es):\n\n * #41426: Can't locate config.ph",
+        "Advisory": {
+          "From": "errata.altlinux.org",
+          "Severity": "Low",
+          "Rights": "Copyright 2024 BaseALT Ltd.",
+          "Issued": {
+            "Date": "2024-11-11"
+          },
+          "Updated": {
+            "Date": "2024-11-11"
+          },
+          "BDUs": null,
+          "Bugzilla": [
+            {
+              "ID": "41426",
+              "Href": "https://bugzilla.altlinux.org/41426",
+              "Data": "Can't locate config.ph"
+            }
+          ],
+          "AffectedCPEs": {
+            "CPEs": [
+              "cpe:/o:alt:kworkstation:10",
+              "cpe:/o:alt:workstation:10",
+              "cpe:/o:alt:server:10",
+              "cpe:/o:alt:server-v:10",
+              "cpe:/o:alt:education:10",
+              "cpe:/o:alt:slinux:10",
+              "cpe:/o:alt:starterkit:p10",
+              "cpe:/o:alt:kworkstation:10.1",
+              "cpe:/o:alt:workstation:10.1",
+              "cpe:/o:alt:server:10.1",
+              "cpe:/o:alt:server-v:10.1",
+              "cpe:/o:alt:education:10.1",
+              "cpe:/o:alt:slinux:10.1",
+              "cpe:/o:alt:starterkit:10.1",
+              "cpe:/o:alt:kworkstation:10.2",
+              "cpe:/o:alt:workstation:10.2",
+              "cpe:/o:alt:server:10.2",
+              "cpe:/o:alt:server-v:10.2",
+              "cpe:/o:alt:education:10.2",
+              "cpe:/o:alt:slinux:10.2",
+              "cpe:/o:alt:starterkit:10.2"
+            ]
+          }
+        }
+      },
+      "Criteria": {
+        "Operator": "AND",
+        "Criterions": [
+          {
+            "TestRef": "oval:org.altlinux.errata:tst:2001",
+            "Comment": "ALT Linux must be installed"
+          }
+        ],
+        "Criterias": [
+          {
+            "Operator": "OR",
+            "Criterions": [
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202415027001",
+                "Comment": "host2cat is earlier than 0:1.01-alt8"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202415027002",
+                "Comment": "openresolv-host2cat is earlier than 0:1.01-alt8"
+              },
+              {
+                "TestRef": "oval:org.altlinux.errata:tst:202415027003",
+                "Comment": "squid-conf-host2cat is earlier than 0:1.01-alt8"
+              }
+            ]
+          }
+        ]
+      }
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-15027/objects.json
+++ b/oval/p10/ALT-PU-2024-15027/objects.json
@ -0,0 +1,46 @@
+{
+  "TextFileContent54Objects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:2001",
+      "Version": "1",
+      "Comment": "Evaluate `/etc/os-release` file content",
+      "Path": {
+        "Datatype": "string",
+        "Text": "/etc"
+      },
+      "Filepath": {
+        "Datatype": "string",
+        "Text": "os-release"
+      },
+      "Pattern": {
+        "Datatype": "string",
+        "Operation": "pattern match",
+        "Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
+      },
+      "Instance": {
+        "Datatype": "int",
+        "Text": "1"
+      }
+    }
+  ],
+  "RPMInfoObjects": [
+    {
+      "ID": "oval:org.altlinux.errata:obj:202415027001",
+      "Version": "1",
+      "Comment": "host2cat is installed",
+      "Name": "host2cat"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202415027002",
+      "Version": "1",
+      "Comment": "openresolv-host2cat is installed",
+      "Name": "openresolv-host2cat"
+    },
+    {
+      "ID": "oval:org.altlinux.errata:obj:202415027003",
+      "Version": "1",
+      "Comment": "squid-conf-host2cat is installed",
+      "Name": "squid-conf-host2cat"
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-15027/states.json
+++ b/oval/p10/ALT-PU-2024-15027/states.json
@ -0,0 +1,23 @@
+{
+  "TextFileContent54State": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:2001",
+      "Version": "1",
+      "Text": {}
+    }
+  ],
+  "RPMInfoStates": [
+    {
+      "ID": "oval:org.altlinux.errata:ste:202415027001",
+      "Version": "1",
+      "Comment": "package EVR is earlier than 0:1.01-alt8",
+      "Arch": {},
+      "EVR": {
+        "Text": "0:1.01-alt8",
+        "Datatype": "evr_string",
+        "Operation": "less than"
+      },
+      "Subexpression": {}
+    }
+  ]
+}
--- a/oval/p10/ALT-PU-2024-15027/tests.json
+++ b/oval/p10/ALT-PU-2024-15027/tests.json
@ -0,0 +1,54 @@
+{
+  "TextFileContent54Tests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:2001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "ALT Linux based on branch 'p10' must be installed",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:2001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:2001"
+      }
+    }
+  ],
+  "RPMInfoTests": [
+    {
+      "ID": "oval:org.altlinux.errata:tst:202415027001",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "host2cat is earlier than 0:1.01-alt8",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202415027001"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202415027001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202415027002",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "openresolv-host2cat is earlier than 0:1.01-alt8",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202415027002"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202415027001"
+      }
+    },
+    {
+      "ID": "oval:org.altlinux.errata:tst:202415027003",
+      "Version": "1",
+      "Check": "all",
+      "Comment": "squid-conf-host2cat is earlier than 0:1.01-alt8",
+      "Object": {
+        "ObjectRef": "oval:org.altlinux.errata:obj:202415027003"
+      },
+      "State": {
+        "StateRef": "oval:org.altlinux.errata:ste:202415027001"
+      }
+    }
+  ]
+}