pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
vuln-list-alt/oval/p11/ALT-PU-2019-2782/definitions.json
pepelyaevip 9d72b75f75 ALT Vulnerability
2024-12-12 21:07:30 +00:00

119 lines
4.1 KiB
JSON
Raw Blame History

{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20192782",
"Version": "oval:org.altlinux.errata:def:20192782",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2019-2782: package `libwebkitgtk4` update to version 2.26.0-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p11"
],
"Products": [
"ALT Container"
]
}
],
"References": [
{
"RefID": "ALT-PU-2019-2782",
"RefURL": "https://errata.altlinux.org/ALT-PU-2019-2782",
"Source": "ALTPU"
},
{
"RefID": "CVE-2019-8720",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2019-8720",
"Source": "CVE"
}
],
"Description": "This update upgrades libwebkitgtk4 to version 2.26.0-alt1. \nSecurity Fix(es):\n\n * CVE-2019-8720: A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple memory corruption issues.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2019-09-25"
},
"Updated": {
"Date": "2019-09-25"
},
"BDUs": null,
"CVEs": [
{
"ID": "CVE-2019-8720",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CWE": "CWE-119",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2019-8720",
"Impact": "High",
"Public": "20230306"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:container:11"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:3001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20192782001",
"Comment": "jsc4 is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782002",
"Comment": "libjavascriptcoregtk4 is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782003",
"Comment": "libjavascriptcoregtk4-devel is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782004",
"Comment": "libjavascriptcoregtk4-gir is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782005",
"Comment": "libjavascriptcoregtk4-gir-devel is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782006",
"Comment": "libwebkit2gtk is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782007",
"Comment": "libwebkit2gtk-devel is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782008",
"Comment": "libwebkit2gtk-gir is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782009",
"Comment": "libwebkit2gtk-gir-devel is earlier than 0:2.26.0-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20192782010",
"Comment": "webkitgtk-minibrowser is earlier than 0:2.26.0-alt1"
}
]
}
]
}
}
]
}
Reference in New Issue View Git Blame Copy Permalink