pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ALT Vulnerability

Browse Source
This commit is contained in:
Иван Пепеляев 2024-12-21 03:06:23 +00:00
parent db67530d9a
commit f40c519964
28 changed files with 2506 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

140
oval/c10f1/ALT-PU-2024-17124/definitions.json Normal file
View File

@ -0,0 +1,140 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202417124",
"Version": "oval:org.altlinux.errata:def:202417124",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-17124: package `curl` update to version 8.11.1-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-17124",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-17124",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-09106",
"RefURL": "https://bdu.fstec.ru/vul/2024-09106",
"Source": "BDU"
},
{
"RefID": "BDU:2024-11106",
"RefURL": "https://bdu.fstec.ru/vul/2024-11106",
"Source": "BDU"
},
{
"RefID": "CVE-2024-11053",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-11053",
"Source": "CVE"
},
{
"RefID": "CVE-2024-9681",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-9681",
"Source": "CVE"
}
],
"Description": "This update upgrades curl to version 8.11.1-alt1. \nSecurity Fix(es):\n\n * BDU:2024-09106: Узвимость реализации механизма HSTS (HTTP Strict Transport Security) утилиты командной строки curl, позволяющая нарушителю проводить атаки типа \u0026quot;человек посередине\u0026quot;\n\n * BDU:2024-11106: Уязвимость обработчика netrc-файлов утилиты командной строки cURL, позволяющая нарушителю получить доступ к учётным данным\n\n * CVE-2024-11053: When asked to both use a `.netrc` file for credentials and to follow HTTP\nredirects, curl could leak the password used for the first host to the\nfollowed-to host under certain circumstances.\n\nThis flaw only manifests itself if the netrc file has an entry that matches\nthe redirect target hostname but the entry either omits just the password or\nomits both login and password.\n\n * CVE-2024-9681: When curl is asked to use HSTS, the expiry time for a subdomain might\noverwrite a parent domain's cache entry, making it end sooner or later than\notherwise intended.\n\nThis affects curl using applications that enable HSTS and use URLs with the\ninsecure `HTTP://` scheme and perform transfers with hosts like\n`x.example.com` as well as `example.com` where the first host is a subdomain\nof the second host.\n\n(The HSTS cache either needs to have been populated manually or there needs to\nhave been previous HTTPS accesses done as the cache needs to have entries for\nthe domains involved to trigger this problem.)\n\nWhen `x.example.com` responds with `Strict-Transport-Security:` headers, this\nbug can make the subdomain's expiry timeout *bleed over* and get set for the\nparent domain `example.com` in curl's HSTS cache.\n\nThe result of a triggered bug is that HTTP accesses to `example.com` get\nconverted to HTTPS for a different period of time than what was asked for by\nthe origin server. If `example.com` for example stops supporting HTTPS at its\nexpiry time, curl might then fail to access `http://example.com` until the\n(wrongly set) timeout expires. This bug can also expire the parent's entry\n*earlier*, thus making curl inadvertently switch back to insecure HTTP earlier\nthan otherwise intended.\n\n * #52093: fatal: unable to access '...': .netrc parser error",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-20"
},
"Updated": {
"Date": "2024-12-20"
},
"BDUs": [
{
"ID": "BDU:2024-09106",
"CVSS": "AV:N/AC:H/Au:N/C:N/I:C/A:N",
"CVSS3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"CWE": "CWE-1025",
"Href": "https://bdu.fstec.ru/vul/2024-09106",
"Impact": "Low",
"Public": "20241009"
},
{
"ID": "BDU:2024-11106",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"CWE": "CWE-200",
"Href": "https://bdu.fstec.ru/vul/2024-11106",
"Impact": "Critical",
"Public": "20241108"
}
],
"CVEs": [
{
"ID": "CVE-2024-11053",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-11053",
"Impact": "None",
"Public": "20241211"
},
{
"ID": "CVE-2024-9681",
"CVSS3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"CWE": "CWE-697",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-9681",
"Impact": "Low",
"Public": "20241106"
}
],
"Bugzilla": [
{
"ID": "52093",
"Href": "https://bugzilla.altlinux.org/52093",
"Data": "fatal: unable to access '...': .netrc parser error"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:5001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202417124001",
"Comment": "curl is earlier than 0:8.11.1-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417124002",
"Comment": "libcurl is earlier than 0:8.11.1-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417124003",
"Comment": "libcurl-devel is earlier than 0:8.11.1-alt1"
}
]
}
]
}
}
]
}

46
oval/c10f1/ALT-PU-2024-17124/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:5001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202417124001",
"Version": "1",
"Comment": "curl is installed",
"Name": "curl"
},
{
"ID": "oval:org.altlinux.errata:obj:202417124002",
"Version": "1",
"Comment": "libcurl is installed",
"Name": "libcurl"
},
{
"ID": "oval:org.altlinux.errata:obj:202417124003",
"Version": "1",
"Comment": "libcurl-devel is installed",
"Name": "libcurl-devel"
}
]
}

23
oval/c10f1/ALT-PU-2024-17124/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:5001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202417124001",
"Version": "1",
"Comment": "package EVR is earlier than 0:8.11.1-alt1",
"Arch": {},
"EVR": {
"Text": "0:8.11.1-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/c10f1/ALT-PU-2024-17124/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:5001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:5001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:5001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202417124001",
"Version": "1",
"Check": "all",
"Comment": "curl is earlier than 0:8.11.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417124001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417124001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417124002",
"Version": "1",
"Check": "all",
"Comment": "libcurl is earlier than 0:8.11.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417124002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417124001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417124003",
"Version": "1",
"Check": "all",
"Comment": "libcurl-devel is earlier than 0:8.11.1-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417124003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417124001"
}
}
]
}

99
oval/c10f1/ALT-PU-2024-17204/definitions.json Normal file
View File

@ -0,0 +1,99 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202417204",
"Version": "oval:org.altlinux.errata:def:202417204",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-17204: package `python3-module-requests` update to version 2.32.3-alt0.p10.1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-17204",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-17204",
"Source": "ALTPU"
},
{
"RefID": "BDU:2023-03874",
"RefURL": "https://bdu.fstec.ru/vul/2023-03874",
"Source": "BDU"
},
{
"RefID": "CVE-2023-32681",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2023-32681",
"Source": "CVE"
}
],
"Description": "This update upgrades python3-module-requests to version 2.32.3-alt0.p10.1. \nSecurity Fix(es):\n\n * BDU:2023-03874: Уязвимость библиотеки HTTP запросов языка программирования Python Requests, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации\n\n * CVE-2023-32681: Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers when redirected to an HTTPS endpoint. This is a product of how we use `rebuild_proxies` to reattach the `Proxy-Authorization` header to requests. For HTTP connections sent through the tunnel, the proxy will identify the header in the request itself and remove it prior to forwarding to the destination server. However when sent over HTTPS, the `Proxy-Authorization` header must be sent in the CONNECT request as the proxy has no visibility into the tunneled request. This results in Requests forwarding proxy credentials to the destination server unintentionally, allowing a malicious actor to potentially exfiltrate sensitive information. This issue has been patched in version 2.31.0.\n\n",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-20"
},
"Updated": {
"Date": "2024-12-20"
},
"BDUs": [
{
"ID": "BDU:2023-03874",
"CVSS": "AV:N/AC:H/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
"CWE": "CWE-200",
"Href": "https://bdu.fstec.ru/vul/2023-03874",
"Impact": "Low",
"Public": "20230522"
}
],
"CVEs": [
{
"ID": "CVE-2023-32681",
"CVSS3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2023-32681",
"Impact": "Low",
"Public": "20230526"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:5001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202417204001",
"Comment": "python3-module-requests is earlier than 0:2.32.3-alt0.p10.1"
}
]
}
]
}
}
]
}

34
oval/c10f1/ALT-PU-2024-17204/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:5001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202417204001",
"Version": "1",
"Comment": "python3-module-requests is installed",
"Name": "python3-module-requests"
}
]
}

23
oval/c10f1/ALT-PU-2024-17204/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:5001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202417204001",
"Version": "1",
"Comment": "package EVR is earlier than 0:2.32.3-alt0.p10.1",
"Arch": {},
"EVR": {
"Text": "0:2.32.3-alt0.p10.1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c10f1/ALT-PU-2024-17204/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:5001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:5001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:5001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202417204001",
"Version": "1",
"Check": "all",
"Comment": "python3-module-requests is earlier than 0:2.32.3-alt0.p10.1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417204001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417204001"
}
}
]
}

77
oval/c10f1/ALT-PU-2024-17206/definitions.json Normal file
View File

@ -0,0 +1,77 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202417206",
"Version": "oval:org.altlinux.errata:def:202417206",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-17206: package `python3-module-cherrypy` update to version 18.9.0-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c10f1"
],
"Products": [
"ALT SP Workstation",
"ALT SP Server"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-17206",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-17206",
"Source": "ALTPU"
}
],
"Description": "This update upgrades python3-module-cherrypy to version 18.9.0-alt1. \nSecurity Fix(es):\n\n * #46442: cherrypy: new version",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-20"
},
"Updated": {
"Date": "2024-12-20"
},
"BDUs": null,
"Bugzilla": [
{
"ID": "46442",
"Href": "https://bugzilla.altlinux.org/46442",
"Data": "cherrypy: new version"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:10",
"cpe:/o:alt:spserver:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:5001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202417206001",
"Comment": "python3-module-cherrypy is earlier than 0:18.9.0-alt1"
}
]
}
]
}
}
]
}

34
oval/c10f1/ALT-PU-2024-17206/objects.json Normal file
View File

@ -0,0 +1,34 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:5001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d+)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202417206001",
"Version": "1",
"Comment": "python3-module-cherrypy is installed",
"Name": "python3-module-cherrypy"
}
]
}

23
oval/c10f1/ALT-PU-2024-17206/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:5001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202417206001",
"Version": "1",
"Comment": "package EVR is earlier than 0:18.9.0-alt1",
"Arch": {},
"EVR": {
"Text": "0:18.9.0-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

30
oval/c10f1/ALT-PU-2024-17206/tests.json Normal file
View File

@ -0,0 +1,30 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:5001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c10f1' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:5001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:5001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202417206001",
"Version": "1",
"Check": "all",
"Comment": "python3-module-cherrypy is earlier than 0:18.9.0-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417206001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417206001"
}
}
]
}

495
oval/c9f2/ALT-PU-2024-17256/definitions.json Normal file
View File

File diff suppressed because one or more lines are too long

58
oval/c9f2/ALT-PU-2024-17256/objects.json Normal file
View File

@ -0,0 +1,58 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:4001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:sp(?:server|workstation):(\\d\\.\\d)"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202417256001",
"Version": "1",
"Comment": "bash-completion-libsixel is installed",
"Name": "bash-completion-libsixel"
},
{
"ID": "oval:org.altlinux.errata:obj:202417256002",
"Version": "1",
"Comment": "libsixel-devel is installed",
"Name": "libsixel-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:202417256003",
"Version": "1",
"Comment": "libsixel1 is installed",
"Name": "libsixel1"
},
{
"ID": "oval:org.altlinux.errata:obj:202417256004",
"Version": "1",
"Comment": "sixel-utils is installed",
"Name": "sixel-utils"
},
{
"ID": "oval:org.altlinux.errata:obj:202417256005",
"Version": "1",
"Comment": "zsh-completion-libsixel is installed",
"Name": "zsh-completion-libsixel"
}
]
}

23
oval/c9f2/ALT-PU-2024-17256/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:4001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202417256001",
"Version": "1",
"Comment": "package EVR is earlier than 0:1.10.3-alt2",
"Arch": {},
"EVR": {
"Text": "0:1.10.3-alt2",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

78
oval/c9f2/ALT-PU-2024-17256/tests.json Normal file
View File

@ -0,0 +1,78 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:4001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'c9f2' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:4001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:4001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202417256001",
"Version": "1",
"Check": "all",
"Comment": "bash-completion-libsixel is earlier than 0:1.10.3-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417256001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417256001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417256002",
"Version": "1",
"Check": "all",
"Comment": "libsixel-devel is earlier than 0:1.10.3-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417256002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417256001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417256003",
"Version": "1",
"Check": "all",
"Comment": "libsixel1 is earlier than 0:1.10.3-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417256003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417256001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417256004",
"Version": "1",
"Check": "all",
"Comment": "sixel-utils is earlier than 0:1.10.3-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417256004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417256001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417256005",
"Version": "1",
"Check": "all",
"Comment": "zsh-completion-libsixel is earlier than 0:1.10.3-alt2",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417256005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417256001"
}
}
]
}

119
oval/p10/ALT-PU-2024-16988/definitions.json Normal file
View File

@ -0,0 +1,119 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202416988",
"Version": "oval:org.altlinux.errata:def:202416988",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-16988: package `podman` update to version 4.9.5-alt0.p10",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit",
"ALT Container"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-16988",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-16988",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-05780",
"RefURL": "https://bdu.fstec.ru/vul/2024-05780",
"Source": "BDU"
},
{
"RefID": "CVE-2024-3727",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-3727",
"Source": "CVE"
}
],
"Description": "This update upgrades podman to version 4.9.5-alt0.p10. \nSecurity Fix(es):\n\n * BDU:2024-05780: Уязвимость библиотеки github.com/containers/image, связанная с неправильной проверкой значения целостности, позволяющая нарушителю вызвать отказ в обслуживании, выполнить атаку обхода локального пути или оказать иное воздействие\n\n * CVE-2024-3727: A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-20"
},
"Updated": {
"Date": "2024-12-20"
},
"BDUs": [
{
"ID": "BDU:2024-05780",
"CVSS": "AV:N/AC:H/Au:N/C:C/I:C/A:C",
"CVSS3": "AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"CWE": "CWE-354",
"Href": "https://bdu.fstec.ru/vul/2024-05780",
"Impact": "High",
"Public": "20240514"
}
],
"CVEs": [
{
"ID": "CVE-2024-3727",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-3727",
"Impact": "None",
"Public": "20240514"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:container:10"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202416988001",
"Comment": "podman is earlier than 0:4.9.5-alt0.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202416988002",
"Comment": "podman-docker is earlier than 0:4.9.5-alt0.p10"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202416988003",
"Comment": "podman-remote is earlier than 0:4.9.5-alt0.p10"
}
]
}
]
}
}
]
}

46
oval/p10/ALT-PU-2024-16988/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:2001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202416988001",
"Version": "1",
"Comment": "podman is installed",
"Name": "podman"
},
{
"ID": "oval:org.altlinux.errata:obj:202416988002",
"Version": "1",
"Comment": "podman-docker is installed",
"Name": "podman-docker"
},
{
"ID": "oval:org.altlinux.errata:obj:202416988003",
"Version": "1",
"Comment": "podman-remote is installed",
"Name": "podman-remote"
}
]
}

23
oval/p10/ALT-PU-2024-16988/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:2001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202416988001",
"Version": "1",
"Comment": "package EVR is earlier than 0:4.9.5-alt0.p10",
"Arch": {},
"EVR": {
"Text": "0:4.9.5-alt0.p10",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/p10/ALT-PU-2024-16988/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:2001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p10' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:2001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:2001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202416988001",
"Version": "1",
"Check": "all",
"Comment": "podman is earlier than 0:4.9.5-alt0.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416988001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416988001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416988002",
"Version": "1",
"Check": "all",
"Comment": "podman-docker is earlier than 0:4.9.5-alt0.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416988002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416988001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202416988003",
"Version": "1",
"Check": "all",
"Comment": "podman-remote is earlier than 0:4.9.5-alt0.p10",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202416988003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202416988001"
}
}
]
}

183
oval/p11/ALT-PU-2024-17189/definitions.json Normal file
View File

@ -0,0 +1,183 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202417189",
"Version": "oval:org.altlinux.errata:def:202417189",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-17189: package `qt6-base` update to version 6.7.2-alt6",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p11"
],
"Products": [
"ALT Container"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-17189",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-17189",
"Source": "ALTPU"
}
],
"Description": "This update upgrades qt6-base to version 6.7.2-alt6. \nSecurity Fix(es):\n\n * #48923: Оключение tls в qt6.6",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-20"
},
"Updated": {
"Date": "2024-12-20"
},
"BDUs": null,
"Bugzilla": [
{
"ID": "48923",
"Href": "https://bugzilla.altlinux.org/48923",
"Data": "Оключение tls в qt6.6"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:container:11"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:3001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202417189001",
"Comment": "libqt6-concurrent is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189002",
"Comment": "libqt6-core is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189003",
"Comment": "libqt6-dbus is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189004",
"Comment": "libqt6-eglfsdeviceintegration is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189005",
"Comment": "libqt6-eglfskmsgbmsupport is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189006",
"Comment": "libqt6-eglfskmssupport is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189007",
"Comment": "libqt6-gui is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189008",
"Comment": "libqt6-network is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189009",
"Comment": "libqt6-opengl is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189010",
"Comment": "libqt6-openglwidgets is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189011",
"Comment": "libqt6-printsupport is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189012",
"Comment": "libqt6-sql is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189013",
"Comment": "libqt6-test is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189014",
"Comment": "libqt6-widgets is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189015",
"Comment": "libqt6-xcbqpa is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189016",
"Comment": "libqt6-xml is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189017",
"Comment": "qt6-base-common is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189018",
"Comment": "qt6-base-devel is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189019",
"Comment": "qt6-base-devel-static is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189020",
"Comment": "qt6-base-doc is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189021",
"Comment": "qt6-qtbase is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189022",
"Comment": "qt6-qtbase-gui is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189023",
"Comment": "qt6-sql is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189024",
"Comment": "qt6-sql-interbase is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189025",
"Comment": "qt6-sql-mysql is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189026",
"Comment": "qt6-sql-odbc is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189027",
"Comment": "qt6-sql-postgresql is earlier than 0:6.7.2-alt6"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417189028",
"Comment": "rpm-macros-qt6 is earlier than 0:6.7.2-alt6"
}
]
}
]
}
}
]
}

196
oval/p11/ALT-PU-2024-17189/objects.json Normal file
View File

@ -0,0 +1,196 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:3001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202417189001",
"Version": "1",
"Comment": "libqt6-concurrent is installed",
"Name": "libqt6-concurrent"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189002",
"Version": "1",
"Comment": "libqt6-core is installed",
"Name": "libqt6-core"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189003",
"Version": "1",
"Comment": "libqt6-dbus is installed",
"Name": "libqt6-dbus"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189004",
"Version": "1",
"Comment": "libqt6-eglfsdeviceintegration is installed",
"Name": "libqt6-eglfsdeviceintegration"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189005",
"Version": "1",
"Comment": "libqt6-eglfskmsgbmsupport is installed",
"Name": "libqt6-eglfskmsgbmsupport"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189006",
"Version": "1",
"Comment": "libqt6-eglfskmssupport is installed",
"Name": "libqt6-eglfskmssupport"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189007",
"Version": "1",
"Comment": "libqt6-gui is installed",
"Name": "libqt6-gui"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189008",
"Version": "1",
"Comment": "libqt6-network is installed",
"Name": "libqt6-network"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189009",
"Version": "1",
"Comment": "libqt6-opengl is installed",
"Name": "libqt6-opengl"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189010",
"Version": "1",
"Comment": "libqt6-openglwidgets is installed",
"Name": "libqt6-openglwidgets"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189011",
"Version": "1",
"Comment": "libqt6-printsupport is installed",
"Name": "libqt6-printsupport"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189012",
"Version": "1",
"Comment": "libqt6-sql is installed",
"Name": "libqt6-sql"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189013",
"Version": "1",
"Comment": "libqt6-test is installed",
"Name": "libqt6-test"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189014",
"Version": "1",
"Comment": "libqt6-widgets is installed",
"Name": "libqt6-widgets"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189015",
"Version": "1",
"Comment": "libqt6-xcbqpa is installed",
"Name": "libqt6-xcbqpa"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189016",
"Version": "1",
"Comment": "libqt6-xml is installed",
"Name": "libqt6-xml"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189017",
"Version": "1",
"Comment": "qt6-base-common is installed",
"Name": "qt6-base-common"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189018",
"Version": "1",
"Comment": "qt6-base-devel is installed",
"Name": "qt6-base-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189019",
"Version": "1",
"Comment": "qt6-base-devel-static is installed",
"Name": "qt6-base-devel-static"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189020",
"Version": "1",
"Comment": "qt6-base-doc is installed",
"Name": "qt6-base-doc"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189021",
"Version": "1",
"Comment": "qt6-qtbase is installed",
"Name": "qt6-qtbase"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189022",
"Version": "1",
"Comment": "qt6-qtbase-gui is installed",
"Name": "qt6-qtbase-gui"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189023",
"Version": "1",
"Comment": "qt6-sql is installed",
"Name": "qt6-sql"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189024",
"Version": "1",
"Comment": "qt6-sql-interbase is installed",
"Name": "qt6-sql-interbase"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189025",
"Version": "1",
"Comment": "qt6-sql-mysql is installed",
"Name": "qt6-sql-mysql"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189026",
"Version": "1",
"Comment": "qt6-sql-odbc is installed",
"Name": "qt6-sql-odbc"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189027",
"Version": "1",
"Comment": "qt6-sql-postgresql is installed",
"Name": "qt6-sql-postgresql"
},
{
"ID": "oval:org.altlinux.errata:obj:202417189028",
"Version": "1",
"Comment": "rpm-macros-qt6 is installed",
"Name": "rpm-macros-qt6"
}
]
}

23
oval/p11/ALT-PU-2024-17189/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:3001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202417189001",
"Version": "1",
"Comment": "package EVR is earlier than 0:6.7.2-alt6",
"Arch": {},
"EVR": {
"Text": "0:6.7.2-alt6",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

354
oval/p11/ALT-PU-2024-17189/tests.json Normal file
View File

@ -0,0 +1,354 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:3001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p11' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:3001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:3001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202417189001",
"Version": "1",
"Check": "all",
"Comment": "libqt6-concurrent is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189002",
"Version": "1",
"Check": "all",
"Comment": "libqt6-core is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189003",
"Version": "1",
"Check": "all",
"Comment": "libqt6-dbus is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189004",
"Version": "1",
"Check": "all",
"Comment": "libqt6-eglfsdeviceintegration is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189004"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189005",
"Version": "1",
"Check": "all",
"Comment": "libqt6-eglfskmsgbmsupport is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189005"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189006",
"Version": "1",
"Check": "all",
"Comment": "libqt6-eglfskmssupport is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189006"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189007",
"Version": "1",
"Check": "all",
"Comment": "libqt6-gui is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189007"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189008",
"Version": "1",
"Check": "all",
"Comment": "libqt6-network is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189008"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189009",
"Version": "1",
"Check": "all",
"Comment": "libqt6-opengl is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189009"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189010",
"Version": "1",
"Check": "all",
"Comment": "libqt6-openglwidgets is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189010"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189011",
"Version": "1",
"Check": "all",
"Comment": "libqt6-printsupport is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189011"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189012",
"Version": "1",
"Check": "all",
"Comment": "libqt6-sql is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189012"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189013",
"Version": "1",
"Check": "all",
"Comment": "libqt6-test is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189013"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189014",
"Version": "1",
"Check": "all",
"Comment": "libqt6-widgets is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189014"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189015",
"Version": "1",
"Check": "all",
"Comment": "libqt6-xcbqpa is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189015"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189016",
"Version": "1",
"Check": "all",
"Comment": "libqt6-xml is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189016"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189017",
"Version": "1",
"Check": "all",
"Comment": "qt6-base-common is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189017"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189018",
"Version": "1",
"Check": "all",
"Comment": "qt6-base-devel is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189018"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189019",
"Version": "1",
"Check": "all",
"Comment": "qt6-base-devel-static is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189019"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189020",
"Version": "1",
"Check": "all",
"Comment": "qt6-base-doc is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189020"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189021",
"Version": "1",
"Check": "all",
"Comment": "qt6-qtbase is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189021"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189022",
"Version": "1",
"Check": "all",
"Comment": "qt6-qtbase-gui is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189022"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189023",
"Version": "1",
"Check": "all",
"Comment": "qt6-sql is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189023"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189024",
"Version": "1",
"Check": "all",
"Comment": "qt6-sql-interbase is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189024"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189025",
"Version": "1",
"Check": "all",
"Comment": "qt6-sql-mysql is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189025"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189026",
"Version": "1",
"Check": "all",
"Comment": "qt6-sql-odbc is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189026"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189027",
"Version": "1",
"Check": "all",
"Comment": "qt6-sql-postgresql is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189027"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417189028",
"Version": "1",
"Check": "all",
"Comment": "rpm-macros-qt6 is earlier than 0:6.7.2-alt6",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417189028"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417189001"
}
}
]
}

118
oval/p11/ALT-PU-2024-17298/definitions.json Normal file
View File

@ -0,0 +1,118 @@
{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202417298",
"Version": "oval:org.altlinux.errata:def:202417298",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-17298: package `mupdf` update to version 1.25.2-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p11"
],
"Products": [
"ALT Container"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-17298",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-17298",
"Source": "ALTPU"
},
{
"RefID": "CVE-2021-3407",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-3407",
"Source": "CVE"
},
{
"RefID": "CVE-2021-37220",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-37220",
"Source": "CVE"
},
{
"RefID": "CVE-2021-4216",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2021-4216",
"Source": "CVE"
}
],
"Description": "This update upgrades mupdf to version 1.25.2-alt1. \nSecurity Fix(es):\n\n * CVE-2021-3407: A flaw was found in mupdf 1.18.0. Double free of object during linearization may lead to memory corruption and other potential consequences.\n\n * CVE-2021-37220: MuPDF through 1.18.1 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table. This can, for example, be seen with crafted \"mutool draw\" input.\n\n * CVE-2021-4216: A Floating point exception (division-by-zero) flaw was found in Mupdf for zero width pages in muraster.c. It is fixed in Mupdf-1.20.0-rc1 upstream.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-12-20"
},
"Updated": {
"Date": "2024-12-20"
},
"BDUs": null,
"CVEs": [
{
"ID": "CVE-2021-3407",
"CVSS": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-3407",
"Impact": "Low",
"Public": "20210223"
},
{
"ID": "CVE-2021-37220",
"CVSS": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"CWE": "CWE-787",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-37220",
"Impact": "Low",
"Public": "20210721"
},
{
"ID": "CVE-2021-4216",
"CVSS3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-369",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2021-4216",
"Impact": "Low",
"Public": "20220826"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:container:11"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:3001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202417298001",
"Comment": "libmupdf-devel is earlier than 0:1.25.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417298002",
"Comment": "libmupdf25 is earlier than 0:1.25.2-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202417298003",
"Comment": "mupdf is earlier than 0:1.25.2-alt1"
}
]
}
]
}
}
]
}

46
oval/p11/ALT-PU-2024-17298/objects.json Normal file
View File

@ -0,0 +1,46 @@
{
"TextFileContent54Objects": [
{
"ID": "oval:org.altlinux.errata:obj:3001",
"Version": "1",
"Comment": "Evaluate `/etc/os-release` file content",
"Path": {
"Datatype": "string",
"Text": "/etc"
},
"Filepath": {
"Datatype": "string",
"Text": "os-release"
},
"Pattern": {
"Datatype": "string",
"Operation": "pattern match",
"Text": "cpe:\\/o:alt:(?!sp)[a-z\\-]+:p?(\\d+)(?:\\.\\d)*"
},
"Instance": {
"Datatype": "int",
"Text": "1"
}
}
],
"RPMInfoObjects": [
{
"ID": "oval:org.altlinux.errata:obj:202417298001",
"Version": "1",
"Comment": "libmupdf-devel is installed",
"Name": "libmupdf-devel"
},
{
"ID": "oval:org.altlinux.errata:obj:202417298002",
"Version": "1",
"Comment": "libmupdf25 is installed",
"Name": "libmupdf25"
},
{
"ID": "oval:org.altlinux.errata:obj:202417298003",
"Version": "1",
"Comment": "mupdf is installed",
"Name": "mupdf"
}
]
}

23
oval/p11/ALT-PU-2024-17298/states.json Normal file
View File

@ -0,0 +1,23 @@
{
"TextFileContent54State": [
{
"ID": "oval:org.altlinux.errata:ste:3001",
"Version": "1",
"Text": {}
}
],
"RPMInfoStates": [
{
"ID": "oval:org.altlinux.errata:ste:202417298001",
"Version": "1",
"Comment": "package EVR is earlier than 0:1.25.2-alt1",
"Arch": {},
"EVR": {
"Text": "0:1.25.2-alt1",
"Datatype": "evr_string",
"Operation": "less than"
},
"Subexpression": {}
}
]
}

54
oval/p11/ALT-PU-2024-17298/tests.json Normal file
View File

@ -0,0 +1,54 @@
{
"TextFileContent54Tests": [
{
"ID": "oval:org.altlinux.errata:tst:3001",
"Version": "1",
"Check": "all",
"Comment": "ALT Linux based on branch 'p11' must be installed",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:3001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:3001"
}
}
],
"RPMInfoTests": [
{
"ID": "oval:org.altlinux.errata:tst:202417298001",
"Version": "1",
"Check": "all",
"Comment": "libmupdf-devel is earlier than 0:1.25.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417298001"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417298001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417298002",
"Version": "1",
"Check": "all",
"Comment": "libmupdf25 is earlier than 0:1.25.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417298002"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417298001"
}
},
{
"ID": "oval:org.altlinux.errata:tst:202417298003",
"Version": "1",
"Check": "all",
"Comment": "mupdf is earlier than 0:1.25.2-alt1",
"Object": {
"ObjectRef": "oval:org.altlinux.errata:obj:202417298003"
},
"State": {
"StateRef": "oval:org.altlinux.errata:ste:202417298001"
}
}
]
}