2024-06-28 13:17:52 +00:00

169 lines
6.4 KiB
JSON
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20193096",
"Version": "oval:org.altlinux.errata:def:20193096",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2019-3096: package `kernel-image-std-pae` update to version 4.19.82-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p10"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2019-3096",
"RefURL": "https://errata.altlinux.org/ALT-PU-2019-3096",
"Source": "ALTPU"
},
{
"RefID": "BDU:2019-03220",
"RefURL": "https://bdu.fstec.ru/vul/2019-03220",
"Source": "BDU"
},
{
"RefID": "CVE-2019-15098",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-15098",
"Source": "CVE"
}
],
"Description": "This update upgrades kernel-image-std-pae to version 4.19.82-alt1. \nSecurity Fix(es):\n\n * BDU:2019-03220: Уязвимость драйвера drivers/net/wireless/ath/ath6kl/usb.c ядра операционных систем Linux, связанная с ошибками разыменования указателя, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2019-15098: drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Low",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2019-11-06"
},
"Updated": {
"Date": "2019-11-06"
},
"BDUs": [
{
"ID": "BDU:2019-03220",
"CVSS": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-476",
"Href": "https://bdu.fstec.ru/vul/2019-03220",
"Impact": "Low",
"Public": "20190814"
}
],
"CVEs": [
{
"ID": "CVE-2019-15098",
"CVSS": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-476",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-15098",
"Impact": "Low",
"Public": "20190816"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:10",
"cpe:/o:alt:workstation:10",
"cpe:/o:alt:server:10",
"cpe:/o:alt:server-v:10",
"cpe:/o:alt:education:10",
"cpe:/o:alt:slinux:10",
"cpe:/o:alt:starterkit:p10",
"cpe:/o:alt:kworkstation:10.1",
"cpe:/o:alt:workstation:10.1",
"cpe:/o:alt:server:10.1",
"cpe:/o:alt:server-v:10.1",
"cpe:/o:alt:education:10.1",
"cpe:/o:alt:slinux:10.1",
"cpe:/o:alt:starterkit:10.1",
"cpe:/o:alt:kworkstation:10.2",
"cpe:/o:alt:workstation:10.2",
"cpe:/o:alt:server:10.2",
"cpe:/o:alt:server-v:10.2",
"cpe:/o:alt:education:10.2",
"cpe:/o:alt:slinux:10.2",
"cpe:/o:alt:starterkit:10.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:2001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20193096001",
"Comment": "kernel-headers-modules-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096002",
"Comment": "kernel-headers-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096003",
"Comment": "kernel-image-domU-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096004",
"Comment": "kernel-image-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096005",
"Comment": "kernel-modules-drm-ancient-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096006",
"Comment": "kernel-modules-drm-nouveau-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096007",
"Comment": "kernel-modules-drm-radeon-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096008",
"Comment": "kernel-modules-drm-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096009",
"Comment": "kernel-modules-ide-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096010",
"Comment": "kernel-modules-kvm-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096011",
"Comment": "kernel-modules-staging-std-pae is earlier than 1:4.19.82-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20193096012",
"Comment": "kernel-modules-v4l-std-pae is earlier than 1:4.19.82-alt1"
}
]
}
]
}
}
]
}