vuln-list-alt/oval/c9f2/ALT-PU-2024-14548/definitions.json

{
  "Definition": [
    {
      "ID": "oval:org.altlinux.errata:def:202414548",
      "Version": "oval:org.altlinux.errata:def:202414548",
      "Class": "patch",
      "Metadata": {
        "Title": "ALT-PU-2024-14548: package `MySQL` update to version 8.0.40-alt0.c9f2.1",
        "AffectedList": [
          {
            "Family": "unix",
            "Platforms": [
              "ALT Linux branch c9f2"
            ],
            "Products": [
              "ALT SPWorkstation",
              "ALT SPServer"
            ]
          }
        ],
        "References": [
          {
            "RefID": "ALT-PU-2024-14548",
            "RefURL": "https://errata.altlinux.org/ALT-PU-2024-14548",
            "Source": "ALTPU"
          },
          {
            "RefID": "BDU:2024-08336",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08336",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08437",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08437",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08438",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08438",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08440",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08440",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08441",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08441",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08443",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08443",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08444",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08444",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08445",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08445",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08447",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08447",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08448",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08448",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08449",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08449",
            "Source": "BDU"
          },
          {
            "RefID": "BDU:2024-08463",
            "RefURL": "https://bdu.fstec.ru/vul/2024-08463",
            "Source": "BDU"
          },
          {
            "RefID": "CVE-2024-21193",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21193",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21194",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21194",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21196",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21196",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21197",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21197",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21198",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21198",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21199",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21199",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21200",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21200",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21201",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21201",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21203",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21203",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21207",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21207",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21212",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21212",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21213",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21213",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21218",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21218",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21219",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21219",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21230",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21230",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21231",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21231",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21236",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21236",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21237",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21237",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21238",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21238",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21239",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21239",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21241",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21241",
            "Source": "CVE"
          },
          {
            "RefID": "CVE-2024-21247",
            "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2024-21247",
            "Source": "CVE"
          }
        ],
        "Description": "This update upgrades MySQL to version 8.0.40-alt0.c9f2.1. \nSecurity Fix(es):\n\n * BDU:2024-08336: Уязвимость компонента InnoDB системы управления базами данных MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08437: Уязвимость компонента InnoDB системы управления базами данных MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08438: Уязвимость компонента InnoDB системы управления базами данных MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08440: Уязвимость компонента Server: Thread Pooling системы управления базами данных Oracle MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08441: Уязвимость компонента Optimizer системы управления базами данных Oracle MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08443: Уязвимость компонента InnoDB системы управления базами данных MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08444: Уязвимость компонента Client Programs системы управления базами данных Oracle MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08445: Уязвимость компонента Group Replication GCS системы управления базами данных Oracle MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08447: Уязвимость компонента InnoDB системы управления базами данных Oracle MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08448: Уязвимость компонента DML системы управления базами данных Oracle MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08449: Уязвимость компонентов Server: Optimizer и Cluster: General системы управления базами данных Oracle MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * BDU:2024-08463: Уязвимость компонента Server: PS системы управления базами данных Oracle MySQL Server, позволяющая нарушителю вызвать отказ в обслуживании\n\n * CVE-2024-21193: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21194: Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21196: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: X Plugin).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21197: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21198: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21199: Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21200: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).  Supported versions that are affected are 8.0.35 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21201: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21203: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21207: Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).  Supported versions that are affected are 8.0.38 and prior, 8.4.1 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21212: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Health Monitor).  Supported versions that are affected are 8.0.39 and prior and  8.4.0. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21213: Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server.  Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.2 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21218: Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21219: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21230: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21231: Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 3.1 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L).\n\n * CVE-2024-21236: Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21237: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication GCS).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 2.2 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L).\n\n * CVE-2024-21238: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling).  Supported versions that are affected are 8.0.39 and prior, 8.4.1 and prior and  9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 5.3 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21239: Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21241: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).\n\n * CVE-2024-21247: Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump).  Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and  9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Client.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of MySQL Client accessible data as well as  unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.1 Base Score 3.8 (Confidentiality and Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N).\n\n * #45499: QMYSQL driver not loaded",
        "Advisory": {
          "From": "errata.altlinux.org",
          "Severity": "Low",
          "Rights": "Copyright 2024 BaseALT Ltd.",
          "Issued": {
            "Date": "2024-10-25"
          },
          "Updated": {
            "Date": "2024-10-25"
          },
          "BDUs": [
            {
              "ID": "BDU:2024-08336",
              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-20, CWE-285",
              "Href": "https://bdu.fstec.ru/vul/2024-08336",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08437",
              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08437",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08438",
              "CVSS": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08438",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08440",
              "CVSS": "AV:N/AC:H/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-285",
              "Href": "https://bdu.fstec.ru/vul/2024-08440",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08441",
              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08441",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08443",
              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08443",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08444",
              "CVSS": "AV:N/AC:H/Au:S/C:N/I:N/A:P",
              "CVSS3": "AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08444",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08445",
              "CVSS": "AV:N/AC:H/Au:S/C:N/I:N/A:P",
              "CVSS3": "AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08445",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08447",
              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08447",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08448",
              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08448",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08449",
              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-404",
              "Href": "https://bdu.fstec.ru/vul/2024-08449",
              "Impact": "Low",
              "Public": "20231207"
            },
            {
              "ID": "BDU:2024-08463",
              "CVSS": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
              "CVSS3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "CWE-20",
              "Href": "https://bdu.fstec.ru/vul/2024-08463",
              "Impact": "Low",
              "Public": "20241015"
            }
          ],
          "CVEs": [
            {
              "ID": "CVE-2024-21193",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21193",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21194",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21194",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21196",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21196",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21197",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21197",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21198",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21198",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21199",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21199",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21200",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21200",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21201",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21201",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21203",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21203",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21207",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21207",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21212",
              "CVSS3": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21212",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21213",
              "CVSS3": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21213",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21218",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21218",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21219",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21219",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21230",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21230",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21231",
              "CVSS3": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21231",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21236",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21236",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21237",
              "CVSS3": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21237",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21238",
              "CVSS3": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21238",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21239",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21239",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21241",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21241",
              "Impact": "Low",
              "Public": "20241015"
            },
            {
              "ID": "CVE-2024-21247",
              "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N",
              "CWE": "NVD-CWE-noinfo",
              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-21247",
              "Impact": "Low",
              "Public": "20241015"
            }
          ],
          "Bugzilla": [
            {
              "ID": "45499",
              "Href": "https://bugzilla.altlinux.org/45499",
              "Data": "QMYSQL driver not loaded"
            }
          ],
          "AffectedCPEs": {
            "CPEs": [
              "cpe:/o:alt:spworkstation:8.4",
              "cpe:/o:alt:spserver:8.4"
            ]
          }
        }
      },
      "Criteria": {
        "Operator": "AND",
        "Criterions": [
          {
            "TestRef": "oval:org.altlinux.errata:tst:3001",
            "Comment": "ALT Linux must be installed"
          }
        ],
        "Criterias": [
          {
            "Operator": "OR",
            "Criterions": [
              {
                "TestRef": "oval:org.altlinux.errata:tst:202414548001",
                "Comment": "MySQL-client is earlier than 0:8.0.40-alt0.c9f2.1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202414548002",
                "Comment": "MySQL-server is earlier than 0:8.0.40-alt0.c9f2.1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202414548003",
                "Comment": "MySQL-server-perl is earlier than 0:8.0.40-alt0.c9f2.1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202414548004",
                "Comment": "libmysqlclient21 is earlier than 0:8.0.40-alt0.c9f2.1"
              },
              {
                "TestRef": "oval:org.altlinux.errata:tst:202414548005",
                "Comment": "libmysqlclient21-devel is earlier than 0:8.0.40-alt0.c9f2.1"
              }
            ]
          }
        ]
      }
    }
  ]
}