157 lines
6.3 KiB
JSON
157 lines
6.3 KiB
JSON
{
|
|
"Definition": [
|
|
{
|
|
"ID": "oval:org.altlinux.errata:def:20162299",
|
|
"Version": "oval:org.altlinux.errata:def:20162299",
|
|
"Class": "patch",
|
|
"Metadata": {
|
|
"Title": "ALT-PU-2016-2299: package `kernel-image-std-def` update to version 4.4.32-alt1",
|
|
"AffectedList": [
|
|
{
|
|
"Family": "unix",
|
|
"Platforms": [
|
|
"ALT Linux branch p11"
|
|
],
|
|
"Products": [
|
|
"ALT Container"
|
|
]
|
|
}
|
|
],
|
|
"References": [
|
|
{
|
|
"RefID": "ALT-PU-2016-2299",
|
|
"RefURL": "https://errata.altlinux.org/ALT-PU-2016-2299",
|
|
"Source": "ALTPU"
|
|
},
|
|
{
|
|
"RefID": "BDU:2017-01280",
|
|
"RefURL": "https://bdu.fstec.ru/vul/2017-01280",
|
|
"Source": "BDU"
|
|
},
|
|
{
|
|
"RefID": "CVE-2016-7039",
|
|
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2016-7039",
|
|
"Source": "CVE"
|
|
},
|
|
{
|
|
"RefID": "CVE-2016-9555",
|
|
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2016-9555",
|
|
"Source": "CVE"
|
|
}
|
|
],
|
|
"Description": "This update upgrades kernel-image-std-def to version 4.4.32-alt1. \nSecurity Fix(es):\n\n * BDU:2017-01280: Уязвимость функции sctp_sf_ootb ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие\n\n * CVE-2016-7039: The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for large crafted packets, as demonstrated by packets that contain only VLAN headers, a related issue to CVE-2016-8666.\n\n * CVE-2016-9555: The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data.",
|
|
"Advisory": {
|
|
"From": "errata.altlinux.org",
|
|
"Severity": "Critical",
|
|
"Rights": "Copyright 2024 BaseALT Ltd.",
|
|
"Issued": {
|
|
"Date": "2016-11-16"
|
|
},
|
|
"Updated": {
|
|
"Date": "2016-11-16"
|
|
},
|
|
"BDUs": [
|
|
{
|
|
"ID": "BDU:2017-01280",
|
|
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
|
|
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
|
|
"CWE": "CWE-125",
|
|
"Href": "https://bdu.fstec.ru/vul/2017-01280",
|
|
"Impact": "Critical",
|
|
"Public": "20161029"
|
|
}
|
|
],
|
|
"CVEs": [
|
|
{
|
|
"ID": "CVE-2016-7039",
|
|
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
|
|
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
|
|
"CWE": "CWE-399",
|
|
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2016-7039",
|
|
"Impact": "High",
|
|
"Public": "20161016"
|
|
},
|
|
{
|
|
"ID": "CVE-2016-9555",
|
|
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
|
|
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
|
|
"CWE": "CWE-125",
|
|
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2016-9555",
|
|
"Impact": "Critical",
|
|
"Public": "20161128"
|
|
}
|
|
],
|
|
"AffectedCPEs": {
|
|
"CPEs": [
|
|
"cpe:/o:alt:container:11"
|
|
]
|
|
}
|
|
}
|
|
},
|
|
"Criteria": {
|
|
"Operator": "AND",
|
|
"Criterions": [
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:3001",
|
|
"Comment": "ALT Linux must be installed"
|
|
}
|
|
],
|
|
"Criterias": [
|
|
{
|
|
"Operator": "OR",
|
|
"Criterions": [
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299001",
|
|
"Comment": "kernel-doc-std is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299002",
|
|
"Comment": "kernel-headers-modules-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299003",
|
|
"Comment": "kernel-headers-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299004",
|
|
"Comment": "kernel-image-domU-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299005",
|
|
"Comment": "kernel-image-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299006",
|
|
"Comment": "kernel-modules-drm-nouveau-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299007",
|
|
"Comment": "kernel-modules-drm-radeon-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299008",
|
|
"Comment": "kernel-modules-drm-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299009",
|
|
"Comment": "kernel-modules-ide-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299010",
|
|
"Comment": "kernel-modules-kvm-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299011",
|
|
"Comment": "kernel-modules-staging-std-def is earlier than 1:4.4.32-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20162299012",
|
|
"Comment": "kernel-modules-v4l-std-def is earlier than 1:4.4.32-alt1"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
} |