New Sun Alert OVAL
|
|
Hansen, Nick (HP SW DCA)
|
I've created a new OVAL Definition for Sun Alert 237584 which covers CVE-2008-2418. Please let me know if any issues are found.
Cheers, --Nick To unsubscribe, send an email message to LISTSERV@... with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to OVAL-DISCUSSION-LIST-request@.... <?xml version="1.0" encoding="UTF-8"?> <oval_definitions xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:sol-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris solaris-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd"> <generator> <oval:product_name>Hewlett-Packard</oval:product_name> <oval:schema_version>5.3</oval:schema_version> <oval:timestamp>2008-05-29T14:40:41.000-04:00</oval:timestamp> </generator> <definitions> <definition id="oval:com.hp.oval:def:20080529001" version="0" class="vulnerability"> <metadata> <title>Security Vulnerability in the Solaris 10 STREAMS Administrative Driver ("sad") May Allow a Denial of Service (System panic)</title> <affected family="unix"> <platform>Sun Solaris 10</platform> </affected> <reference source="CVE" ref_id="CVE-2008-2418" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2418"/> <description>Race condition in the STREAMS Administrative Driver (sad) in Sun Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-05-29T14:40:41.000-04:00"> <contributor organization="Hewlett-Packard">Nicholas Hansen</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR" comment="Software Section"> <criteria operator="AND" comment="Solaris 10 (SPARC) meets Sun Alert 237584" negate="false"> <extend_definition comment="Solaris 10 (SPARC) is installed" definition_ref="oval:org.mitre.oval:def:1440"/> <criterion comment="Patch 127743-01 or later installed" test_ref="oval:com.hp.oval:tst:20080529001" negate="true"/> <criterion comment="Patch 120011-06 or later installed" test_ref="oval:com.hp.oval:tst:20080529002" negate="false"/> </criteria> <criteria operator="AND" comment="Solaris 10 (x86) meets Sun Alert 237584" negate="false"> <extend_definition comment="Solaris 10 (x86) is installed" definition_ref="oval:org.mitre.oval:def:1926"/> <criterion comment="Patch 127744-01 or later installed" test_ref="oval:com.hp.oval:tst:20080529004" negate="true"/> <criterion comment="Patch 120012-06 or later installed" test_ref="oval:com.hp.oval:tst:20080529003" negate="false"/> </criteria> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1440" version="1" class="inventory"> <metadata> <title>Solaris 10 (SPARC) is installed</title> <affected family="unix"> <platform>Sun Solaris 10</platform> </affected> <reference source="CPE" ref_id="cpe:/o:sun:sunos:5.10::sparc"/> <description>The operating system installed on the system is Sun Solaris 10 for SPARC.</description> <oval_repository> <dates> <submitted date="2007-06-15T12:00:00.000-04:00"> <contributor organization="The MITRE Corporation">Jonathan Baker</contributor> </submitted> <status_change date="2007-06-15T12:20:00.000-04:00">DRAFT</status_change> <status_change date="2007-07-03T21:53:52.343-04:00">INTERIM</status_change> <status_change date="2007-07-18T15:57:49.640-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Solaris 10 Installed" test_ref="oval:org.mitre.oval:tst:3680"/> <criterion comment="sparc architecture" test_ref="oval:org.mitre.oval:tst:3237"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1926" version="1" class="inventory"> <metadata> <title>Solaris 10 (x86) is installed</title> <affected family="unix"> <platform>Sun Solaris 10</platform> </affected> <reference source="CPE" ref_id="cpe:/o:sun:sunos:5.10::ix86"/> <description>The operating system installed on the system is Sun Solaris 10 for x86.</description> <oval_repository> <dates> <submitted date="2007-06-15T12:00:00.000-04:00"> <contributor organization="The MITRE Corporation">Jonathan Baker</contributor> </submitted> <status_change date="2007-06-15T12:20:00.000-04:00">DRAFT</status_change> <status_change date="2007-07-03T21:53:53.007-04:00">INTERIM</status_change> <status_change date="2007-07-18T15:57:51.357-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Solaris 10 Installed" test_ref="oval:org.mitre.oval:tst:3680"/> <criterion comment="ix86 architecture" test_ref="oval:org.mitre.oval:tst:3912"/> </criteria> </definition> </definitions> <tests> <patch_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" check_existence="at_least_one_exists" comment="Patch 127743-01 or later installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080529001"> <object object_ref="oval:com.hp.oval:obj:20080529001"/> <state state_ref="oval:com.hp.oval:ste:20080529001"/> </patch_test> <patch_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" check_existence="at_least_one_exists" comment="Patch 120011-06 or later installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080529002"> <object object_ref="oval:com.hp.oval:obj:20080529002"/> <state state_ref="oval:com.hp.oval:ste:20080529002"/> </patch_test> <patch_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" check_existence="at_least_one_exists" comment="Patch 120012-06 or later installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080529003"> <object object_ref="oval:com.hp.oval:obj:20080529003"/> <state state_ref="oval:com.hp.oval:ste:20080529002"/> </patch_test> <patch_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" check_existence="at_least_one_exists" comment="Patch 127744-01 or later installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080529004"> <object object_ref="oval:com.hp.oval:obj:20080529004"/> <state state_ref="oval:com.hp.oval:ste:20080529001"/> </patch_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3237" version="1" comment="sparc architecture" check_existence="at_least_one_exists" check="at least one"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3478"/> </uname_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3680" version="1" comment="Solaris 10 Installed" check_existence="at_least_one_exists" check="at least one"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3597"/> </uname_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3912" version="1" comment="ix86 architecture" check_existence="at_least_one_exists" check="at least one"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3443"/> </uname_test> </tests> <objects> <patch_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" version="1" id="oval:com.hp.oval:obj:20080529001"> <base datatype="int">127743</base> </patch_object> <patch_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" version="1" id="oval:com.hp.oval:obj:20080529002"> <base datatype="int">120011</base> </patch_object> <patch_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" version="1" id="oval:com.hp.oval:obj:20080529003"> <base datatype="int">120012</base> </patch_object> <patch_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" version="1" id="oval:com.hp.oval:obj:20080529004"> <base datatype="int">127744</base> </patch_object> <uname_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:obj:2759" version="1" comment="The single uname object."/> </objects> <states> <patch_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" operator="AND" version="1" id="oval:com.hp.oval:ste:20080529001"> <version operation="greater than or equal" datatype="int">01</version> </patch_state> <patch_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" operator="AND" version="1" id="oval:com.hp.oval:ste:20080529002"> <version operation="greater than or equal" datatype="int">06</version> </patch_state> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3443" version="1" comment="processor type is ix86"> <processor_type operation="pattern match">^i.*86</processor_type> </uname_state> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3478" version="1" comment="processor type is SPARC"> <processor_type operation="pattern match">[Ss][Pp][Aa][Rr][Cc]</processor_type> </uname_state> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3597" version="1"> <os_release>5.10</os_release> </uname_state> </states> </oval_definitions> |
|
Hansen, Nick (HP SW DCA)
|
Just noticed my oval:schema_version was wrong. Attached is a 5.4 versioned def.
Sorry about that. --Nick -----Original Message----- From: Hansen, Nick Sent: Thursday, May 29, 2008 3:16 PM To: OVAL-DISCUSSION-LIST@... Subject: [OVAL-DISCUSSION-LIST] New Sun Alert OVAL I've created a new OVAL Definition for Sun Alert 237584 which covers CVE-2008-2418. Please let me know if any issues are found. Cheers, --Nick To unsubscribe, send an email message to LISTSERV@... with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to OVAL-DISCUSSION-LIST-request@.... <?xml version="1.0" encoding="UTF-8"?> <oval_definitions xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:sol-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris solaris-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd"> <generator> <oval:product_name>Hewlett-Packard</oval:product_name> <oval:schema_version>5.4</oval:schema_version> <oval:timestamp>2008-05-29T14:40:41.000-04:00</oval:timestamp> </generator> <definitions> <definition id="oval:com.hp.oval:def:20080529001" version="0" class="vulnerability"> <metadata> <title>Security Vulnerability in the Solaris 10 STREAMS Administrative Driver ("sad") May Allow a Denial of Service (System panic)</title> <affected family="unix"> <platform>Sun Solaris 10</platform> </affected> <reference source="CVE" ref_id="CVE-2008-2418" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2418"/> <description>Race condition in the STREAMS Administrative Driver (sad) in Sun Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-05-29T14:40:41.000-04:00"> <contributor organization="Hewlett-Packard">Nicholas Hansen</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR" comment="Software Section"> <criteria operator="AND" comment="Solaris 10 (SPARC) meets Sun Alert 237584" negate="false"> <extend_definition comment="Solaris 10 (SPARC) is installed" definition_ref="oval:org.mitre.oval:def:1440"/> <criterion comment="Patch 127743-01 or later installed" test_ref="oval:com.hp.oval:tst:20080529001" negate="true"/> <criterion comment="Patch 120011-06 or later installed" test_ref="oval:com.hp.oval:tst:20080529002" negate="false"/> </criteria> <criteria operator="AND" comment="Solaris 10 (x86) meets Sun Alert 237584" negate="false"> <extend_definition comment="Solaris 10 (x86) is installed" definition_ref="oval:org.mitre.oval:def:1926"/> <criterion comment="Patch 127744-01 or later installed" test_ref="oval:com.hp.oval:tst:20080529004" negate="true"/> <criterion comment="Patch 120012-06 or later installed" test_ref="oval:com.hp.oval:tst:20080529003" negate="false"/> </criteria> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1440" version="1" class="inventory"> <metadata> <title>Solaris 10 (SPARC) is installed</title> <affected family="unix"> <platform>Sun Solaris 10</platform> </affected> <reference source="CPE" ref_id="cpe:/o:sun:sunos:5.10::sparc"/> <description>The operating system installed on the system is Sun Solaris 10 for SPARC.</description> <oval_repository> <dates> <submitted date="2007-06-15T12:00:00.000-04:00"> <contributor organization="The MITRE Corporation">Jonathan Baker</contributor> </submitted> <status_change date="2007-06-15T12:20:00.000-04:00">DRAFT</status_change> <status_change date="2007-07-03T21:53:52.343-04:00">INTERIM</status_change> <status_change date="2007-07-18T15:57:49.640-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Solaris 10 Installed" test_ref="oval:org.mitre.oval:tst:3680"/> <criterion comment="sparc architecture" test_ref="oval:org.mitre.oval:tst:3237"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1926" version="1" class="inventory"> <metadata> <title>Solaris 10 (x86) is installed</title> <affected family="unix"> <platform>Sun Solaris 10</platform> </affected> <reference source="CPE" ref_id="cpe:/o:sun:sunos:5.10::ix86"/> <description>The operating system installed on the system is Sun Solaris 10 for x86.</description> <oval_repository> <dates> <submitted date="2007-06-15T12:00:00.000-04:00"> <contributor organization="The MITRE Corporation">Jonathan Baker</contributor> </submitted> <status_change date="2007-06-15T12:20:00.000-04:00">DRAFT</status_change> <status_change date="2007-07-03T21:53:53.007-04:00">INTERIM</status_change> <status_change date="2007-07-18T15:57:51.357-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Solaris 10 Installed" test_ref="oval:org.mitre.oval:tst:3680"/> <criterion comment="ix86 architecture" test_ref="oval:org.mitre.oval:tst:3912"/> </criteria> </definition> </definitions> <tests> <patch_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" check_existence="at_least_one_exists" comment="Patch 127743-01 or later installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080529001"> <object object_ref="oval:com.hp.oval:obj:20080529001"/> <state state_ref="oval:com.hp.oval:ste:20080529001"/> </patch_test> <patch_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" check_existence="at_least_one_exists" comment="Patch 120011-06 or later installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080529002"> <object object_ref="oval:com.hp.oval:obj:20080529002"/> <state state_ref="oval:com.hp.oval:ste:20080529002"/> </patch_test> <patch_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" check_existence="at_least_one_exists" comment="Patch 120012-06 or later installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080529003"> <object object_ref="oval:com.hp.oval:obj:20080529003"/> <state state_ref="oval:com.hp.oval:ste:20080529002"/> </patch_test> <patch_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" check_existence="at_least_one_exists" comment="Patch 127744-01 or later installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080529004"> <object object_ref="oval:com.hp.oval:obj:20080529004"/> <state state_ref="oval:com.hp.oval:ste:20080529001"/> </patch_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3237" version="1" comment="sparc architecture" check_existence="at_least_one_exists" check="at least one"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3478"/> </uname_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3680" version="1" comment="Solaris 10 Installed" check_existence="at_least_one_exists" check="at least one"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3597"/> </uname_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3912" version="1" comment="ix86 architecture" check_existence="at_least_one_exists" check="at least one"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3443"/> </uname_test> </tests> <objects> <patch_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" version="1" id="oval:com.hp.oval:obj:20080529001"> <base datatype="int">127743</base> </patch_object> <patch_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" version="1" id="oval:com.hp.oval:obj:20080529002"> <base datatype="int">120011</base> </patch_object> <patch_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" version="1" id="oval:com.hp.oval:obj:20080529003"> <base datatype="int">120012</base> </patch_object> <patch_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" version="1" id="oval:com.hp.oval:obj:20080529004"> <base datatype="int">127744</base> </patch_object> <uname_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:obj:2759" version="1" comment="The single uname object."/> </objects> <states> <patch_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" operator="AND" version="1" id="oval:com.hp.oval:ste:20080529001"> <version operation="greater than or equal" datatype="int">01</version> </patch_state> <patch_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#solaris" operator="AND" version="1" id="oval:com.hp.oval:ste:20080529002"> <version operation="greater than or equal" datatype="int">06</version> </patch_state> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3443" version="1" comment="processor type is ix86"> <processor_type operation="pattern match">^i.*86</processor_type> </uname_state> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3478" version="1" comment="processor type is SPARC"> <processor_type operation="pattern match">[Ss][Pp][Aa][Rr][Cc]</processor_type> </uname_state> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3597" version="1"> <os_release>5.10</os_release> </uname_state> </states> </oval_definitions> |
||||||||||||||||||
Worrell, Bryan A.
|
Nick,
Thank you for your submission to the OVAL Repository. It has been posted to the OVAL Repository for further community review. Thanks, Bryan Worrell __ Bryan Worrell The MITRE Corporation bworrell@... >-----Original Message----- >From: Hansen, Nick [mailto:nick.hansen@...] >Sent: Thursday, May 29, 2008 3:46 PM >To: oval-discussion-list OVAL Discussion List/Closed Public Discussi >Subject: Re: [OVAL-DISCUSSION-LIST] New Sun Alert OVAL > >Just noticed my oval:schema_version was wrong. Attached is a 5.4 >versioned def. > >Sorry about that. > >--Nick > >-----Original Message----- >From: Hansen, Nick >Sent: Thursday, May 29, 2008 3:16 PM >To: OVAL-DISCUSSION-LIST@... >Subject: [OVAL-DISCUSSION-LIST] New Sun Alert OVAL > >I've created a new OVAL Definition for Sun Alert 237584 which covers >CVE-2008-2418. Please let me know if any issues are found. > >Cheers, >--Nick > >To unsubscribe, send an email message to LISTSERV@... with >SIGNOFF OVAL-DISCUSSION-LIST >in the BODY of the message. If you have difficulties, write to OVAL- >DISCUSSION-LIST-request@.... To unsubscribe, send an email message to LISTSERV@... with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to OVAL-DISCUSSION-LIST-request@.... |
||||||||||||||||||
| Free Forum Powered by Nabble | Forum Help |