-
Notifications
You must be signed in to change notification settings - Fork 32
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
feat(#3723): Adds custom AlmaLinux OVAL feed
- Loading branch information
Mateo Cervilla
committed
Aug 1, 2023
1 parent
5beb116
commit 16c8313
Showing
1 changed file
with
265 additions
and
0 deletions.
There are no files selected for viewing
265 changes: 265 additions & 0 deletions
265
...s/integration/test_vulnerability_detector/data/feeds/almalinux/custom_alsa8_oval_feed.xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,265 @@ | ||
| <?xml version='1.0' encoding='utf-8'?> | ||
| <oval_definitions xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" xmlns:red-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#linux" xmlns:ind-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#independent" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5"> | ||
| <generator> | ||
| <oval:product_name>AlmaLinux OS Errata System</oval:product_name> | ||
| <oval:product_version>0.0.1</oval:product_version> | ||
| <oval:schema_version>5.10</oval:schema_version> | ||
| <oval:timestamp>2023-01-12T08:52:26</oval:timestamp> | ||
| </generator> | ||
| <definitions> | ||
| <definition id="oval:org.almalinux.alsa:def:20224661" version="635" class="patch"> | ||
| <metadata> | ||
| <title>CVE-000 custom-package-0</title> | ||
| <reference ref_id="CVE-000" source="CVE" ref_url="https://access.redhat.com/security/cve/CVE-000"/> | ||
| <description>CVE-000 custom-package-0</description> | ||
| <advisory from="[email protected]"> | ||
| <severity>Important</severity> | ||
| <rights>Copyright 2022 AlmaLinux OS</rights> | ||
| <issued date="2022-05-18"/> | ||
| <updated date="2022-05-18"/> | ||
| <affected_cpe_list> | ||
| <cpe>cpe:/a:almalinux:almalinux:8</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::highavailability</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::resilientstorage</cpe> | ||
| </affected_cpe_list> | ||
| <bugzilla href="https://bugzilla.redhat.com/2081096" id="2081096"></bugzilla> | ||
| <cve public="20220502" href="https://access.redhat.com/security/cve/CVE-000" impact="important" cwe="CWE-22" cvss3="CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N">CVE-000</cve> | ||
| </advisory> | ||
| </metadata> | ||
| <criteria operator="OR"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992005" comment="AlmaLinux must be installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992003" comment="AlmaLinux 8 is installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20224661001" comment="custom-package-0 is earlier than 0:2.0.0"/> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20202462002" comment="custom-package-0 is signed with AlmaLinux OS 8 key"/> | ||
| </criteria> | ||
| </criteria> | ||
| </criteria> | ||
| </definition> | ||
| <definition id="oval:org.almalinux.alsa:def:20224661" version="635" class="patch"> | ||
| <metadata> | ||
| <title>CVE-001 custom-package-1</title> | ||
| <reference ref_id="CVE-001" source="CVE" ref_url="https://access.redhat.com/security/cve/CVE-001"/> | ||
| <description>CVE-001 custom-package-1</description> | ||
| <advisory from="[email protected]"> | ||
| <severity>Important</severity> | ||
| <rights>Copyright 2022 AlmaLinux OS</rights> | ||
| <issued date="2022-05-18"/> | ||
| <updated date="2022-05-18"/> | ||
| <affected_cpe_list> | ||
| <cpe>cpe:/a:almalinux:almalinux:8</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::highavailability</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::resilientstorage</cpe> | ||
| </affected_cpe_list> | ||
| <bugzilla href="https://bugzilla.redhat.com/2081096" id="2081096"></bugzilla> | ||
| <cve public="20220502" href="https://access.redhat.com/security/cve/CVE-001" impact="important" cwe="CWE-22" cvss3="CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N">CVE-001</cve> | ||
| </advisory> | ||
| </metadata> | ||
| <criteria operator="OR"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992005" comment="AlmaLinux must be installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992003" comment="AlmaLinux 8 is installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20224661003" comment="custom-package-1 is earlier than 0:2.0.0"/> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20202462004" comment="custom-package-1 is signed with AlmaLinux OS 8 key"/> | ||
| </criteria> | ||
| </criteria> | ||
| </criteria> | ||
| </definition> | ||
| <definition id="oval:org.almalinux.alsa:def:20224661" version="635" class="patch"> | ||
| <metadata> | ||
| <title>CVE-002 custom-package-2</title> | ||
| <reference ref_id="CVE-002" source="CVE" ref_url="https://access.redhat.com/security/cve/CVE-002"/> | ||
| <description>CVE-002 custom-package-2</description> | ||
| <advisory from="[email protected]"> | ||
| <severity>Important</severity> | ||
| <rights>Copyright 2022 AlmaLinux OS</rights> | ||
| <issued date="2022-05-18"/> | ||
| <updated date="2022-05-18"/> | ||
| <affected_cpe_list> | ||
| <cpe>cpe:/a:almalinux:almalinux:8</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::highavailability</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::resilientstorage</cpe> | ||
| </affected_cpe_list> | ||
| <bugzilla href="https://bugzilla.redhat.com/2081096" id="2081096"></bugzilla> | ||
| <cve public="20220502" href="https://access.redhat.com/security/cve/CVE-002" impact="important" cwe="CWE-22" cvss3="CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N">CVE-002</cve> | ||
| </advisory> | ||
| </metadata> | ||
| <criteria operator="OR"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992005" comment="AlmaLinux must be installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992003" comment="AlmaLinux 8 is installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20224661005" comment="custom-package-2 is earlier than 0:2.0.0"/> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20202462006" comment="custom-package-2 is signed with AlmaLinux OS 8 key"/> | ||
| </criteria> | ||
| </criteria> | ||
| </criteria> | ||
| </definition> | ||
| <definition id="oval:org.almalinux.alsa:def:20224661" version="635" class="patch"> | ||
| <metadata> | ||
| <title>CVE-003 custom-package-3</title> | ||
| <reference ref_id="CVE-003" source="CVE" ref_url="https://access.redhat.com/security/cve/CVE-003"/> | ||
| <description>CVE-003 custom-package-3</description> | ||
| <advisory from="[email protected]"> | ||
| <severity>Important</severity> | ||
| <rights>Copyright 2022 AlmaLinux OS</rights> | ||
| <issued date="2022-05-18"/> | ||
| <updated date="2022-05-18"/> | ||
| <affected_cpe_list> | ||
| <cpe>cpe:/a:almalinux:almalinux:8</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::highavailability</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::resilientstorage</cpe> | ||
| </affected_cpe_list> | ||
| <bugzilla href="https://bugzilla.redhat.com/2081096" id="2081096"></bugzilla> | ||
| <cve public="20220502" href="https://access.redhat.com/security/cve/CVE-003" impact="important" cwe="CWE-22" cvss3="CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N">CVE-003</cve> | ||
| </advisory> | ||
| </metadata> | ||
| <criteria operator="OR"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992005" comment="AlmaLinux must be installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992003" comment="AlmaLinux 8 is installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20224661007" comment="custom-package-3 is earlier than 0:2.0.0"/> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20202462008" comment="custom-package-3 is signed with AlmaLinux OS 8 key"/> | ||
| </criteria> | ||
| </criteria> | ||
| </criteria> | ||
| </definition> | ||
| <definition id="oval:org.almalinux.alsa:def:20224661" version="635" class="patch"> | ||
| <metadata> | ||
| <title>CVE-004 custom-package-4</title> | ||
| <reference ref_id="CVE-004" source="CVE" ref_url="https://access.redhat.com/security/cve/CVE-004"/> | ||
| <description>CVE-004 custom-package-4</description> | ||
| <advisory from="[email protected]"> | ||
| <severity>Important</severity> | ||
| <rights>Copyright 2022 AlmaLinux OS</rights> | ||
| <issued date="2022-05-18"/> | ||
| <updated date="2022-05-18"/> | ||
| <affected_cpe_list> | ||
| <cpe>cpe:/a:almalinux:almalinux:8</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::highavailability</cpe> | ||
| <cpe>cpe:/a:almalinux:almalinux:8::resilientstorage</cpe> | ||
| </affected_cpe_list> | ||
| <bugzilla href="https://bugzilla.redhat.com/2081096" id="2081096"></bugzilla> | ||
| <cve public="20220502" href="https://access.redhat.com/security/cve/CVE-004" impact="important" cwe="CWE-22" cvss3="CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N">CVE-004</cve> | ||
| </advisory> | ||
| </metadata> | ||
| <criteria operator="OR"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992005" comment="AlmaLinux must be installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alba:tst:20191992003" comment="AlmaLinux 8 is installed"/> | ||
| <criteria operator="AND"> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20224661009" comment="custom-package-4 is earlier than 0:2.0.0"/> | ||
| <criterion test_ref="oval:org.almalinux.alsa:tst:20202462010" comment="custom-package-4 is signed with AlmaLinux OS 8 key"/> | ||
| </criteria> | ||
| </criteria> | ||
| </criteria> | ||
| </definition> | ||
| </definitions> | ||
| <tests> | ||
| <red-def:rpmverifyfile_test check="none satisfy" comment="AlmaLinux must be installed" id="oval:org.almalinux.alba:tst:20191992005" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alba:obj:20191992002"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alba:ste:20191992005"/> | ||
| </red-def:rpmverifyfile_test> | ||
| <red-def:rpmverifyfile_test check="at least one" comment="AlmaLinux 8 is installed" id="oval:org.almalinux.alba:tst:20191992003" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alba:obj:20191992002"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alba:ste:20191992003"/> | ||
| </red-def:rpmverifyfile_test> | ||
|
|
||
| <red-def:rpminfo_test check="at least one" comment="custom-package-0 is earlier than 0:2.0.0" id="oval:org.almalinux.alsa:tst:20224661001" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462001"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alsa:ste:20224661001"/> | ||
| </red-def:rpminfo_test> | ||
| <red-def:rpminfo_test check="at least one" comment="custom-package-0 is signed with AlmaLinux OS 8 key" id="oval:org.almalinux.alsa:tst:20202462002" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462001"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alba:ste:20191992002"/> | ||
| </red-def:rpminfo_test> | ||
|
|
||
| <red-def:rpminfo_test check="at least one" comment="custom-package-1 is earlier than 0:2.0.0" id="oval:org.almalinux.alsa:tst:20224661003" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462002"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alsa:ste:20224661001"/> | ||
| </red-def:rpminfo_test> | ||
| <red-def:rpminfo_test check="at least one" comment="custom-package-1 is signed with AlmaLinux OS 8 key" id="oval:org.almalinux.alsa:tst:20202462004" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462002"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alba:ste:20191992002"/> | ||
| </red-def:rpminfo_test> | ||
|
|
||
| <red-def:rpminfo_test check="at least one" comment="custom-package-2 is earlier than 0:2.0.0" id="oval:org.almalinux.alsa:tst:20224661005" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462003"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alsa:ste:20224661001"/> | ||
| </red-def:rpminfo_test> | ||
| <red-def:rpminfo_test check="at least one" comment="custom-package-2 is signed with AlmaLinux OS 8 key" id="oval:org.almalinux.alsa:tst:20202462006" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462003"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alba:ste:20191992002"/> | ||
| </red-def:rpminfo_test> | ||
|
|
||
| <red-def:rpminfo_test check="at least one" comment="custom-package-3 is earlier than 0:2.0.0" id="oval:org.almalinux.alsa:tst:20224661007" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462004"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alsa:ste:20224661001"/> | ||
| </red-def:rpminfo_test> | ||
| <red-def:rpminfo_test check="at least one" comment="custom-package-3 is signed with AlmaLinux OS 8 key" id="oval:org.almalinux.alsa:tst:20202462008" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462004"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alba:ste:20191992002"/> | ||
| </red-def:rpminfo_test> | ||
|
|
||
| <red-def:rpminfo_test check="at least one" comment="custom-package-4 is earlier than 0:2.0.0" id="oval:org.almalinux.alsa:tst:20224661009" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462005"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alsa:ste:20224661001"/> | ||
| </red-def:rpminfo_test> | ||
| <red-def:rpminfo_test check="at least one" comment="custom-package-4 is signed with AlmaLinux OS 8 key" id="oval:org.almalinux.alsa:tst:20202462010" version="635"> | ||
| <red-def:object object_ref="oval:org.almalinux.alsa:obj:20202462005"/> | ||
| <red-def:state state_ref="oval:org.almalinux.alba:ste:20191992002"/> | ||
| </red-def:rpminfo_test> | ||
| </tests> | ||
| <objects> | ||
| <red-def:rpmverifyfile_object id="oval:org.almalinux.alba:obj:20191992002" version="635"> | ||
| <red-def:behaviors noconfigfiles="true" noghostfiles="true" nogroup="true" nolinkto="true" nomd5="true" nomode="true" nomtime="true" nordev="true" nosize="true" nouser="true"/> | ||
| <red-def:name operation="pattern match"/> | ||
| <red-def:epoch operation="pattern match"/> | ||
| <red-def:version operation="pattern match"/> | ||
| <red-def:release operation="pattern match"/> | ||
| <red-def:arch operation="pattern match"/> | ||
| <red-def:filepath>/etc/almalinux-release</red-def:filepath> | ||
| </red-def:rpmverifyfile_object> | ||
| <red-def:rpminfo_object id="oval:org.almalinux.alsa:obj:20202462001" version="635"> | ||
| <red-def:name>custom-package-0</red-def:name> | ||
| </red-def:rpminfo_object> | ||
| <red-def:rpminfo_object id="oval:org.almalinux.alsa:obj:20202462002" version="635"> | ||
| <red-def:name>custom-package-1</red-def:name> | ||
| </red-def:rpminfo_object> | ||
| <red-def:rpminfo_object id="oval:org.almalinux.alsa:obj:20202462003" version="635"> | ||
| <red-def:name>custom-package-2</red-def:name> | ||
| </red-def:rpminfo_object> | ||
| <red-def:rpminfo_object id="oval:org.almalinux.alsa:obj:20202462004" version="635"> | ||
| <red-def:name>custom-package-3</red-def:name> | ||
| </red-def:rpminfo_object> | ||
| <red-def:rpminfo_object id="oval:org.almalinux.alsa:obj:20202462005" version="635"> | ||
| <red-def:name>custom-package-4</red-def:name> | ||
| </red-def:rpminfo_object> | ||
| </objects> | ||
| <states> | ||
| <red-def:rpmverifyfile_state id="oval:org.almalinux.alba:ste:20191992005" version="635"> | ||
| <red-def:name operation="pattern match">^almalinux-release</red-def:name> | ||
| </red-def:rpmverifyfile_state> | ||
| <red-def:rpmverifyfile_state id="oval:org.almalinux.alba:ste:20191992003" version="635"> | ||
| <red-def:name operation="pattern match">^almalinux-release</red-def:name> | ||
| <red-def:version operation="pattern match">^8[^\d]</red-def:version> | ||
| </red-def:rpmverifyfile_state> | ||
| <red-def:rpminfo_state id="oval:org.almalinux.alba:ste:20191992002" version="635"> | ||
| <red-def:signature_keyid operation="equals">51d6647ec21ad6ea</red-def:signature_keyid> | ||
| </red-def:rpminfo_state> | ||
| <red-def:rpminfo_state id="oval:org.almalinux.alsa:ste:20224661001" version="635"> | ||
| <red-def:evr datatype="evr_string" operation="less than">0:2.0.0</red-def:evr> | ||
| </red-def:rpminfo_state> | ||
| </states> | ||
| <variables> | ||
| <local_variable id="oval:org.almalinux.alsa:var:20191167001" version="643" comment="Get saved_entry in /boot/grub2/grubenv" datatype="int"> | ||
| <arithmetic arithmetic_operation="add"> | ||
| <literal_component datatype="int">1</literal_component> | ||
| <object_component item_field="text" object_ref="oval:org.almalinux.alsa:obj:20191167027"/> | ||
| </arithmetic> | ||
| </local_variable> | ||
| </variables> | ||
| </oval_definitions> |