pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
b1153fc0bf
vuln-list-alt/oval/c9f2/ALT-PU-2024-10223/definitions.json
pepelyaevip af2f8b3981 ALT Vulnerability
2024-11-19 09:05:47 +00:00

382 lines
18 KiB
JSON
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:202410223",
"Version": "oval:org.altlinux.errata:def:202410223",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2024-10223: package `apache2` update to version 2.4.61-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch c9f2"
],
"Products": [
"ALT SPWorkstation",
"ALT SPServer"
]
}
],
"References": [
{
"RefID": "ALT-PU-2024-10223",
"RefURL": "https://errata.altlinux.org/ALT-PU-2024-10223",
"Source": "ALTPU"
},
{
"RefID": "BDU:2024-04936",
"RefURL": "https://bdu.fstec.ru/vul/2024-04936",
"Source": "BDU"
},
{
"RefID": "BDU:2024-05131",
"RefURL": "https://bdu.fstec.ru/vul/2024-05131",
"Source": "BDU"
},
{
"RefID": "BDU:2024-05194",
"RefURL": "https://bdu.fstec.ru/vul/2024-05194",
"Source": "BDU"
},
{
"RefID": "BDU:2024-05195",
"RefURL": "https://bdu.fstec.ru/vul/2024-05195",
"Source": "BDU"
},
{
"RefID": "BDU:2024-05354",
"RefURL": "https://bdu.fstec.ru/vul/2024-05354",
"Source": "BDU"
},
{
"RefID": "BDU:2024-05631",
"RefURL": "https://bdu.fstec.ru/vul/2024-05631",
"Source": "BDU"
},
{
"RefID": "CVE-2024-36387",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-36387",
"Source": "CVE"
},
{
"RefID": "CVE-2024-38472",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-38472",
"Source": "CVE"
},
{
"RefID": "CVE-2024-38473",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-38473",
"Source": "CVE"
},
{
"RefID": "CVE-2024-38474",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-38474",
"Source": "CVE"
},
{
"RefID": "CVE-2024-38475",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-38475",
"Source": "CVE"
},
{
"RefID": "CVE-2024-38476",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-38476",
"Source": "CVE"
},
{
"RefID": "CVE-2024-38477",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-38477",
"Source": "CVE"
},
{
"RefID": "CVE-2024-39573",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-39573",
"Source": "CVE"
},
{
"RefID": "CVE-2024-39884",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-39884",
"Source": "CVE"
}
],
"Description": "This update upgrades apache2 to version 2.4.61-alt1. \nSecurity Fix(es):\n\n * BDU:2024-04936: Уязвимость функции mod_rewrite веб-сервера Apache HTTP Server, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2024-05131: Уязвимость ядра веб-сервера Apache HTTP Server, связанная с включением функций из недостоверной контролируемой области, позволяющая нарушителю выполнить произвольный код\n\n * BDU:2024-05194: Уязвимость протокола WebSocket веб-сервера Apache HTTP Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-05195: Уязвимость модуля mod_proxy веб-сервера Apache HTTP Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-05354: Уязвимость веб-сервера Apache HTTP Server связана с недостаточной проверкой поступающих запросов, позволяющая нарушителю осуществить SSRF-атаку\n\n * BDU:2024-05631: Уязвимость модуля mod_rewrite веб-сервера Apache HTTP Server, позволяющая нарушителю осуществить SSRF-атаку\n\n * CVE-2024-36387: Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, degrading performance.\n\n * CVE-2024-38472: SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via SSRF and malicious requests or content \nUsers are recommended to upgrade to version 2.4.60 which fixes this issue.  Note: Existing configurations that access UNC paths will have to configure new directive \"UNCList\" to allow access during request processing.\n\n * CVE-2024-38473: Encoding problem in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent to backend services, potentially bypassing authentication via crafted requests.\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\n\n * CVE-2024-38474: Substitution encoding issue in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts in\ndirectories permitted by the configuration but not directly reachable by any URL or source disclosure of scripts meant to only to be executed as CGI.\n\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\n\nSome RewriteRules that capture and substitute unsafely will now fail unless rewrite flag \"UnsafeAllow3F\" is specified.\n\n * CVE-2024-38475: Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure. \n\nSubstitutions in server context that use a backreferences or variables as the first segment of the substitution are affected.  Some unsafe RewiteRules will be broken by this change and the rewrite flag \"UnsafePrefixStat\" can be used to opt back in once ensuring the substitution is appropriately constrained.\n\n * CVE-2024-38476: Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via backend applications whose response headers are malicious or exploitable.\n\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\n\n * CVE-2024-38477: null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request.\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\n\n * CVE-2024-39573: Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by mod_proxy.\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\n\n * CVE-2024-39884: A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers.   \"AddType\" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted.\n\nUsers are recommended to upgrade to version 2.4.61, which fixes this issue.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "Critical",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2024-07-31"
},
"Updated": {
"Date": "2024-07-31"
},
"BDUs": [
{
"ID": "BDU:2024-04936",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"CWE": "CWE-116",
"Href": "https://bdu.fstec.ru/vul/2024-04936",
"Impact": "Critical",
"Public": "20240701"
},
{
"ID": "BDU:2024-05131",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-829",
"Href": "https://bdu.fstec.ru/vul/2024-05131",
"Impact": "Critical",
"Public": "20240701"
},
{
"ID": "BDU:2024-05194",
"CVSS": "AV:N/AC:H/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-476",
"Href": "https://bdu.fstec.ru/vul/2024-05194",
"Impact": "Low",
"Public": "20240527"
},
{
"ID": "BDU:2024-05195",
"CVSS": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-404, CWE-476",
"Href": "https://bdu.fstec.ru/vul/2024-05195",
"Impact": "High",
"Public": "20240401"
},
{
"ID": "BDU:2024-05354",
"CVSS": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"CVSS3": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-918",
"Href": "https://bdu.fstec.ru/vul/2024-05354",
"Impact": "High",
"Public": "20240701"
},
{
"ID": "BDU:2024-05631",
"CVSS": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"CVSS3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"CWE": "CWE-20, CWE-918",
"Href": "https://bdu.fstec.ru/vul/2024-05631",
"Impact": "High",
"Public": "20240401"
}
],
"CVEs": [
{
"ID": "CVE-2024-36387",
"CWE": "CWE-476",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-36387",
"Impact": "None",
"Public": "20240701"
},
{
"ID": "CVE-2024-38472",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-38472",
"Impact": "None",
"Public": "20240701"
},
{
"ID": "CVE-2024-38473",
"CWE": "CWE-116",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-38473",
"Impact": "None",
"Public": "20240701"
},
{
"ID": "CVE-2024-38474",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CWE": "CWE-116",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-38474",
"Impact": "Critical",
"Public": "20240701"
},
{
"ID": "CVE-2024-38475",
"CWE": "CWE-116",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-38475",
"Impact": "None",
"Public": "20240701"
},
{
"ID": "CVE-2024-38476",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-38476",
"Impact": "Critical",
"Public": "20240701"
},
{
"ID": "CVE-2024-38477",
"CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-476",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-38477",
"Impact": "High",
"Public": "20240701"
},
{
"ID": "CVE-2024-39573",
"CWE": "CWE-20",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-39573",
"Impact": "None",
"Public": "20240701"
},
{
"ID": "CVE-2024-39884",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-39884",
"Impact": "None",
"Public": "20240704"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:spworkstation:8.4",
"cpe:/o:alt:spserver:8.4"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:3001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:202410223001",
"Comment": "apache2 is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223002",
"Comment": "apache2-ab is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223003",
"Comment": "apache2-base is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223004",
"Comment": "apache2-cgi-bin is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223005",
"Comment": "apache2-cgi-bin-printenv is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223006",
"Comment": "apache2-cgi-bin-test-cgi is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223007",
"Comment": "apache2-compat is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223008",
"Comment": "apache2-configs-A1PROXIED is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223009",
"Comment": "apache2-datadirs is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223010",
"Comment": "apache2-devel is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223011",
"Comment": "apache2-docs is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223012",
"Comment": "apache2-full is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223013",
"Comment": "apache2-htcacheclean is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223014",
"Comment": "apache2-htcacheclean-control is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223015",
"Comment": "apache2-html is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223016",
"Comment": "apache2-htpasswd is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223017",
"Comment": "apache2-httpd-event is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223018",
"Comment": "apache2-httpd-prefork is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223019",
"Comment": "apache2-httpd-worker is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223020",
"Comment": "apache2-icons is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223021",
"Comment": "apache2-manual is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223022",
"Comment": "apache2-manual-addons is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223023",
"Comment": "apache2-mod_cache_disk is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223024",
"Comment": "apache2-mod_ldap is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223025",
"Comment": "apache2-mod_proxy_html is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223026",
"Comment": "apache2-mod_ssl is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223027",
"Comment": "apache2-mod_ssl-compat is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223028",
"Comment": "apache2-mods is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223029",
"Comment": "apache2-suexec is earlier than 1:2.4.61-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:202410223030",
"Comment": "rpm-build-apache2 is earlier than 1:2.4.61-alt1"
}
]
}
]
}
}
]
}
Reference in New Issue View Git Blame Copy Permalink