vuln-list-alt/oval/c10f1/ALT-PU-2024-10527/definitions.json

{
  "Definition": [
    {
      "ID": "oval:org.altlinux.errata:def:202410527",
      "Version": "oval:org.altlinux.errata:def:202410527",
      "Class": "patch",
      "Metadata": {
        "Title": "ALT-PU-2024-10527: package `kubernetes1.28` update to version 1.28.12-alt1",
        "AffectedList": [
          {
            "Family": "unix",
            "Platforms": [
              "ALT Linux branch c10f1"
            ],
            "Products": [
              "ALT SP Workstation",
              "ALT SP Server"
            ]
          }
        ],
        "References": [
          {
            "RefID": "ALT-PU-2024-10527",
            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-10527",
            "Source": "ALTPU"
          },
          {
            "RefID": "BDU:2024-05549",
            "RefURL": "https://bdu.fstec.ru/vul/2024-05549",
            "Source": "BDU"
          },
          {
            "RefID": "CVE-2024-5321",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-5321",
            "Source": "CVE"
          }
        ],
        "Description": "This update upgrades kubernetes1.28 to version 1.28.12-alt1. \nSecurity Fix(es):\n\n * BDU:2024-05549: Уязвимость утилиты kubelet программного средства управления кластерами виртуальных машин Kubernetes для операционных систем Windows, связанная с некорректно используемыми стандартными разрешениями, позволяющая нарушителю изменить информацию, хранящуюся в журналах контейнеров\n\n * CVE-2024-5321: A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\\Users may be able to read container logs and NT AUTHORITY\\Authenticated Users may be able to modify container logs.",
        "Advisory": {
          "From": "errata.altlinux.org",
          "Severity": "Low",
          "Rights": "Copyright 2024 BaseALT Ltd.",
          "Issued": {
            "Date": "2024-08-01"
          },
          "Updated": {
            "Date": "2024-08-01"
          },
          "BDUs": [
            {
              "ID": "BDU:2024-05549",
              "CVSS": "AV:L/AC:L/Au:S/C:C/I:P/A:N",
              "CVSS3": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
              "CWE": "CWE-276",
              "Href": "https://bdu.fstec.ru/vul/2024-05549",
              "Impact": "Low",
              "Public": "20240717"
            }
          ],
          "CVEs": [
            {
              "ID": "CVE-2024-5321",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-5321",
              "Impact": "None",
              "Public": "20240718"
            }
          ],
          "AffectedCPEs": {
            "CPEs": [
              "cpe:/o:alt:spworkstation:10",
              "cpe:/o:alt:spserver:10"
            ]
          }
        }
      },
      "Criteria": {
        "Operator": "AND",
        "Criterions": [
          {
            "TestRef": "oval:org.altlinux.errata:tst:4001",
            "Comment": "ALT Linux must be installed"
          }
        ],
        "Criterias": [
          {
            "Operator": "OR",
            "Criterions": [
              {
                "TestRef": "oval:org.altlinux.errata:tst:202410527001",
                "Comment": "kubernetes1.28-client is earlier than 0:1.28.12-alt1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202410527002",
                "Comment": "kubernetes1.28-common is earlier than 0:1.28.12-alt1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202410527003",
                "Comment": "kubernetes1.28-crio is earlier than 0:1.28.12-alt1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202410527004",
                "Comment": "kubernetes1.28-kubeadm is earlier than 0:1.28.12-alt1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202410527005",
                "Comment": "kubernetes1.28-kubelet is earlier than 0:1.28.12-alt1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202410527006",
                "Comment": "kubernetes1.28-master is earlier than 0:1.28.12-alt1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202410527007",
                "Comment": "kubernetes1.28-node is earlier than 0:1.28.12-alt1"
              }
            ]
          }
        ]
      }
    }
  ]
}