Making Security Measurable › OVAL - Open Vulnerability and Assessment Language › OVAL Repository Forum
OVAL for AIX vulnerabilities
|
|
Peng, Pai
|
Some javascript/style in this post has been disabled (why?)
I'd like to submit 2 OVAL definitions to cover AIX
vulnerabilities CVE-2009-3516 and CVE-2009-3517. Thanks, Pai <?xml version="1.0" encoding="UTF-8"?> <oval_definitions xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#aix aix-definitions-schema.xsd" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5"> <generator> <oval:product_name>Hewlett-Packard</oval:product_name> <oval:schema_version>5.6</oval:schema_version> <oval:timestamp>2009-10-09T12:04:23.671-04:00</oval:timestamp> </generator> <definitions> <definition id="oval:org.mitre.oval:def:5707" version="1" class="inventory"> <metadata> <title>IBM AIX 5300-07 is installed</title> <affected family="unix"> <platform>IBM AIX 5.3</platform> </affected> <reference source="CPE" ref_id="cpe:/o:ibm:aix:5.3"/> <description>The operating system installed on the system is IBM AIX version 5300-07.</description> <oval_repository> <dates> <submitted date="2008-06-12T12:00:00.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> <status_change date="2008-04-11T14:12:19.480-04:00">DRAFT</status_change> <status_change date="2008-05-05T04:00:24.174-04:00">INTERIM</status_change> <status_change date="2008-05-26T04:00:20.886-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Version of IBM AIX installed is 5300-07" test_ref="oval:org.mitre.oval:tst:8029"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:5293" version="1" class="inventory"> <metadata> <title>IBM AIX 5300-08 is installed</title> <affected family="unix"> <platform>IBM AIX 5.3</platform> </affected> <reference source="CPE" ref_id="cpe:/o:ibm:aix:5.3"/> <description>The operating system installed on the system is IBM AIX version 5300-08.</description> <oval_repository> <dates> <submitted date="2008-06-12T12:00:00.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> <status_change date="2008-04-11T14:12:19.480-04:00">DRAFT</status_change> <status_change date="2008-05-05T04:00:24.174-04:00">INTERIM</status_change> <status_change date="2008-05-26T04:00:20.886-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Version of IBM AIX installed is 5300-08" test_ref="oval:org.mitre.oval:tst:8206"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:6306" version="1" class="inventory"> <metadata> <title>IBM AIX 5300-09 is installed</title> <affected family="unix"> <platform>IBM AIX 5.3</platform> </affected> <reference source="CPE" ref_id="cpe:/o:ibm:aix:5.3"/> <description>The operating system installed on the system is IBM AIX version 5300-09.</description> <oval_repository> <dates> <submitted date="2009-07-20T12:00:00.000-04:00"> <contributor organization="DTCC">Aharon Chernin</contributor> </submitted> <status_change date="2009-07-20T22:24:01.613-04:00">DRAFT</status_change> <status_change date="2009-08-17T04:00:03.981-04:00">INTERIM</status_change> <status_change date="2009-09-07T04:00:16.981-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Version of IBM AIX installed is 5300-09" test_ref="oval:org.mitre.oval:tst:10388"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:5589" version="0" class="inventory"> <metadata> <title>IBM AIX 6100-00 is installed</title> <affected family="unix"> <platform>IBM AIX 6.1</platform> </affected> <reference source="CPE" ref_id="cpe:/o:ibm:aix:6.1"/> <description>The operating system installed on the system is IBM AIX version 6100-00.</description> <oval_repository> <dates> <submitted date="2008-06-12T12:00:00.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> <status_change date="2008-04-11T14:12:19.480-04:00">DRAFT</status_change> <status_change date="2008-05-05T04:00:24.174-04:00">INTERIM</status_change> <status_change date="2008-05-26T04:00:20.886-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Version of IBM AIX installed is 6100-00" test_ref="oval:org.mitre.oval:tst:8078"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:5959" version="1" class="inventory"> <metadata> <title>IBM AIX 6100-01 is installed</title> <affected family="unix"> <platform>IBM AIX 6.1</platform> </affected> <reference source="CPE" ref_id="cpe:/o:ibm:aix:6.1"/> <description>The operating system installed on the system is IBM AIX version 6100-01.</description> <oval_repository> <dates> <submitted date="2009-07-20T12:00:00.000-04:00"> <contributor organization="DTCC">Aharon Chernin</contributor> </submitted> <status_change date="2009-07-20T22:24:02.045-04:00">DRAFT</status_change> <modified comment="changed the operation from less than or equal to equals." date="2009-07-30T17:17:00.992-04:00"> <contributor organization="DTCC">Aharon Chernin</contributor> </modified> <status_change date="2009-08-24T04:00:06.749-04:00">INTERIM</status_change> <status_change date="2009-09-14T04:00:06.624-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Version of IBM AIX installed is 6100-01" test_ref="oval:org.mitre.oval:tst:9809"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:5685" version="1" class="inventory"> <metadata> <title>IBM AIX 6100-02 is installed</title> <affected family="unix"> <platform>IBM AIX 6.1</platform> </affected> <reference source="CPE" ref_id="cpe:/o:ibm:aix:6.1"/> <description>The operating system installed on the system is IBM AIX version 6100-02.</description> <oval_repository> <dates> <submitted date="2009-07-20T12:00:00.000-04:00"> <contributor organization="DTCC">Aharon Chernin</contributor> </submitted> <status_change date="2009-07-20T22:24:02.200-04:00">DRAFT</status_change> <modified comment="changed the operation from less than or equal to equals." date="2009-07-30T17:17:00.261-04:00"> <contributor organization="DTCC">Aharon Chernin</contributor> </modified> <status_change date="2009-08-17T04:00:02.415-04:00">INTERIM</status_change> <status_change date="2009-09-07T04:00:05.088-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria> <criterion comment="Version of IBM AIX installed is 6100-02" test_ref="oval:org.mitre.oval:tst:10023"/> </criteria> </definition> <definition id="oval:com.hp.temp.oval:def:20091021001" version="0" class="vulnerability"> <metadata> <title>AIX NFSv4 Kerberos vulnerability</title> <affected family="unix"> <platform>IBM AIX 5.3</platform> <platform>IBM AIX 6.1</platform> </affected> <reference source="CVE" ref_id="CVE-2009-3516" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3516"/> <description>gssd in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly handle the NFSv4 Kerberos credential cache, which allows local users to bypass intended access restrictions for Kerberized NFSv4 shares via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2009-10-09T14:55:01.000-04:00"> <contributor organization="Hewlett-Packard">Pai Peng</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND"> <extend_definition comment="IBM AIX 5300-07 is installed" definition_ref="oval:org.mitre.oval:def:5707"/> <criterion comment="All filesets for APAR IZ50496 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021001" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 5.3.7.0" test_ref="oval:com.hp.temp.oval:tst:20091021007"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 5.3.7.8" test_ref="oval:com.hp.temp.oval:tst:20091021008"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 5300-08 is installed" definition_ref="oval:org.mitre.oval:def:5293"/> <criterion comment="All filesets for APAR IZ50444 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021002" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 5.3.8.0" test_ref="oval:com.hp.temp.oval:tst:20091021009"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 5.3.8.6" test_ref="oval:com.hp.temp.oval:tst:20091021010"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 5300-09 is installed" definition_ref="oval:org.mitre.oval:def:6306"/> <criterion comment="All filesets for APAR IZ50399 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021003" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 5.3.9.0" test_ref="oval:com.hp.temp.oval:tst:20091021011"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 5.3.9.2" test_ref="oval:com.hp.temp.oval:tst:20091021012"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 6100-00 is installed" definition_ref="oval:org.mitre.oval:def:5589"/> <criterion comment="All filesets for APAR IZ49278 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021004" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 6.1.0.0" test_ref="oval:com.hp.temp.oval:tst:20091021013"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 6.1.0.8" test_ref="oval:com.hp.temp.oval:tst:20091021014"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 6100-01 is installed" definition_ref="oval:org.mitre.oval:def:5959"/> <criterion comment="All filesets for APAR IZ49096 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021005" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 6.1.1.0" test_ref="oval:com.hp.temp.oval:tst:20091021015"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 6.1.1.4" test_ref="oval:com.hp.temp.oval:tst:20091021016"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 6100-02 is installed" definition_ref="oval:org.mitre.oval:def:5685"/> <criterion comment="All filesets for APAR IZ49024 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021006" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 6.1.2.0" test_ref="oval:com.hp.temp.oval:tst:20091021017"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 6.1.2.3" test_ref="oval:com.hp.temp.oval:tst:20091021018"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.temp.oval:def:20091021002" version="0" class="vulnerability"> <metadata> <title>AIX NFSv4 nfs_portmon vulnerability</title> <affected family="unix"> <platform>IBM AIX 5.3</platform> <platform>IBM AIX 6.1</platform> </affected> <reference source="CVE" ref_id="CVE-2009-3517" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3517"/> <description>nfs.ext in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly use the nfs_portmon setting, which allows remote attackers to bypass intended access restrictions for NFSv4 shares via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2009-10-09T14:55:01.000-04:00"> <contributor organization="Hewlett-Packard">Pai Peng</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND"> <extend_definition comment="IBM AIX 5300-07 is installed" definition_ref="oval:org.mitre.oval:def:5707"/> <criterion comment="All filesets for APAR IZ50496 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021001" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 5.3.7.0" test_ref="oval:com.hp.temp.oval:tst:20091021007"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 5.3.7.8" test_ref="oval:com.hp.temp.oval:tst:20091021008"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 5300-08 is installed" definition_ref="oval:org.mitre.oval:def:5293"/> <criterion comment="All filesets for APAR IZ50444 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021002" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 5.3.8.0" test_ref="oval:com.hp.temp.oval:tst:20091021009"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 5.3.8.6" test_ref="oval:com.hp.temp.oval:tst:20091021010"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 5300-09 is installed" definition_ref="oval:org.mitre.oval:def:6306"/> <criterion comment="All filesets for APAR IZ50399 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021003" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 5.3.9.0" test_ref="oval:com.hp.temp.oval:tst:20091021011"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 5.3.9.2" test_ref="oval:com.hp.temp.oval:tst:20091021012"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 6100-00 is installed" definition_ref="oval:org.mitre.oval:def:5589"/> <criterion comment="All filesets for APAR IZ49278 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021004" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 6.1.0.0" test_ref="oval:com.hp.temp.oval:tst:20091021013"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 6.1.0.8" test_ref="oval:com.hp.temp.oval:tst:20091021014"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 6100-01 is installed" definition_ref="oval:org.mitre.oval:def:5959"/> <criterion comment="All filesets for APAR IZ49096 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021005" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 6.1.1.0" test_ref="oval:com.hp.temp.oval:tst:20091021015"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 6.1.1.4" test_ref="oval:com.hp.temp.oval:tst:20091021016"/> </criteria> <criteria operator="AND"> <extend_definition comment="IBM AIX 6100-02 is installed" definition_ref="oval:org.mitre.oval:def:5685"/> <criterion comment="All filesets for APAR IZ49024 are installed" test_ref="oval:com.hp.temp.oval:tst:20091021006" negate="true"/> <criterion comment="Fileset bos.net.nfs.client is greater than or equal 6.1.2.0" test_ref="oval:com.hp.temp.oval:tst:20091021017"/> <criterion comment="Fileset bos.net.nfs.client is less than or equal 6.1.2.3" test_ref="oval:com.hp.temp.oval:tst:20091021018"/> </criteria> </criteria> </definition> </definitions> <tests> <oslevel_test id="oval:org.mitre.oval:tst:8029" version="1" comment="Version of IBM AIX installed is 5300-07" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:org.mitre.oval:obj:5715"/> <state state_ref="oval:org.mitre.oval:ste:3093"/> </oslevel_test> <oslevel_test id="oval:org.mitre.oval:tst:8206" version="1" comment="Version of IBM AIX installed is 5300-08" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:org.mitre.oval:obj:5715"/> <state state_ref="oval:org.mitre.oval:ste:3019"/> </oslevel_test> <oslevel_test id="oval:org.mitre.oval:tst:10388" version="1" comment="Version of IBM AIX installed is 5300-09" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:org.mitre.oval:obj:5715"/> <state state_ref="oval:org.mitre.oval:ste:4611"/> </oslevel_test> <oslevel_test id="oval:org.mitre.oval:tst:8078" version="0" comment="Version of IBM AIX installed is 6100-00" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:org.mitre.oval:obj:5715"/> <state state_ref="oval:org.mitre.oval:ste:3097"/> </oslevel_test> <oslevel_test id="oval:org.mitre.oval:tst:9809" version="2" comment="Version of IBM AIX installed is 6100-01" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:org.mitre.oval:obj:5715"/> <state state_ref="oval:org.mitre.oval:ste:5023"/> </oslevel_test> <oslevel_test id="oval:org.mitre.oval:tst:10023" version="2" comment="Version of IBM AIX installed is 6100-02" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:org.mitre.oval:obj:5715"/> <state state_ref="oval:org.mitre.oval:ste:5165"/> </oslevel_test> <fix_test id="oval:com.hp.temp.oval:tst:20091021001" version="1" comment="All filesets for APAR IZ50496 are installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021001"/> <state state_ref="oval:org.mitre.oval:ste:3334"/> </fix_test> <fix_test id="oval:com.hp.temp.oval:tst:20091021002" version="1" comment="All filesets for APAR IZ50444 are installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021002"/> <state state_ref="oval:org.mitre.oval:ste:3334"/> </fix_test> <fix_test id="oval:com.hp.temp.oval:tst:20091021003" version="1" comment="All filesets for APAR IZ50399 are installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021003"/> <state state_ref="oval:org.mitre.oval:ste:3334"/> </fix_test> <fix_test id="oval:com.hp.temp.oval:tst:20091021004" version="1" comment="All filesets for APAR IZ49278 are installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021004"/> <state state_ref="oval:org.mitre.oval:ste:3334"/> </fix_test> <fix_test id="oval:com.hp.temp.oval:tst:20091021005" version="1" comment="All filesets for APAR IZ49096 are installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021005"/> <state state_ref="oval:org.mitre.oval:ste:3334"/> </fix_test> <fix_test id="oval:com.hp.temp.oval:tst:20091021006" version="1" comment="All filesets for APAR IZ49024 are installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021006"/> <state state_ref="oval:org.mitre.oval:ste:3334"/> </fix_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021007" version="1" comment="Fileset bos.net.nfs.client is greater than or equal 5.3.7.0" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021001"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021008" version="1" comment="Fileset bos.net.nfs.client is less than or equal 5.3.7.8" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021002"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021009" version="1" comment="Fileset bos.net.nfs.client is greater than or equal 5.3.8.0" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021003"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021010" version="1" comment="Fileset bos.net.nfs.client is less than or equal 5.3.8.6" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021004"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021011" version="1" comment="Fileset bos.net.nfs.client is greater than or equal 5.3.9.0" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021005"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021012" version="1" comment="Fileset bos.net.nfs.client is less than or equal 5.3.9.2" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021006"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021013" version="1" comment="Fileset bos.net.nfs.client is greater than or equal 6.1.0.0" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021007"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021014" version="1" comment="Fileset bos.net.nfs.client is less than or equal 6.1.0.8 " check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021008"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021015" version="1" comment="Fileset bos.net.nfs.client is greater than or equal 6.1.1.0" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021009"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021016" version="1" comment="Fileset bos.net.nfs.client is less than or equal 6.1.1.4 " check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021010"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021017" version="1" comment="Fileset bos.net.nfs.client is greater than or equal 6.1.2.0" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021011"/> </fileset_test> <fileset_test id="oval:com.hp.temp.oval:tst:20091021018" version="1" comment="Fileset bos.net.nfs.client is less than or equal 6.1.2.3 " check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <object object_ref="oval:com.hp.temp.oval:obj:20091021007"/> <state state_ref="oval:com.hp.temp.oval:ste:20091021012"/> </fileset_test> </tests> <objects> <oslevel_object id="oval:org.mitre.oval:obj:5715" version="1" comment="The single oslevel object." xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"/> <fix_object id="oval:com.hp.temp.oval:obj:20091021001" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <apar_number>IZ50496</apar_number> </fix_object> <fix_object id="oval:com.hp.temp.oval:obj:20091021002" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <apar_number>IZ50444</apar_number> </fix_object> <fix_object id="oval:com.hp.temp.oval:obj:20091021003" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <apar_number>IZ50399</apar_number> </fix_object> <fix_object id="oval:com.hp.temp.oval:obj:20091021004" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <apar_number>IZ49278</apar_number> </fix_object> <fix_object id="oval:com.hp.temp.oval:obj:20091021005" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <apar_number>IZ49096</apar_number> </fix_object> <fix_object id="oval:com.hp.temp.oval:obj:20091021006" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <apar_number>IZ49024</apar_number> </fix_object> <fileset_object id="oval:com.hp.temp.oval:obj:20091021007" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <flstinst>bos.net.nfs.client</flstinst> </fileset_object> </objects> <states> <oslevel_state id="oval:org.mitre.oval:ste:3093" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <maintenance_level datatype="version">5300-07</maintenance_level> </oslevel_state> <oslevel_state id="oval:org.mitre.oval:ste:3019" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <maintenance_level datatype="version">5300-08</maintenance_level> </oslevel_state> <oslevel_state id="oval:org.mitre.oval:ste:4611" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <maintenance_level datatype="version">5300-09</maintenance_level> </oslevel_state> <oslevel_state id="oval:org.mitre.oval:ste:3097" version="0" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <maintenance_level datatype="version">6100-00</maintenance_level> </oslevel_state> <oslevel_state id="oval:org.mitre.oval:ste:5023" version="2" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <maintenance_level datatype="version">6100-01</maintenance_level> </oslevel_state> <oslevel_state id="oval:org.mitre.oval:ste:5165" version="2" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <maintenance_level datatype="version">6100-02</maintenance_level> </oslevel_state> <fix_state id="oval:org.mitre.oval:ste:3334" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <installation_status>ALL_INSTALLED</installation_status> </fix_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021001" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="greater than or equal" datatype="version">5.3.7.0</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021002" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="less than or equal" datatype="version">5.3.7.8</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021003" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="greater than or equal" datatype="version">5.3.8.0</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021004" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="less than or equal" datatype="version">5.3.8.6</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021005" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="greater than or equal" datatype="version">5.3.9.0</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021006" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="less than or equal" datatype="version">5.3.9.2</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021007" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="greater than or equal" datatype="version">6.1.0.0</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021008" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="less than or equal" datatype="version">6.1.0.8</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021009" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="greater than or equal" datatype="version">6.1.1.0</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021010" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="less than or equal" datatype="version">6.1.1.4</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021011" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="greater than or equal" datatype="version">6.1.2.0</level> </fileset_state> <fileset_state id="oval:com.hp.temp.oval:ste:20091021012" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#aix"> <level operation="less than or equal" datatype="version">6.1.2.3</level> </fileset_state> </states> </oval_definitions> |
Lah, Mike M.
|
Some javascript/style in this post has been disabled (why?)
Pai, Thank you for the definitions. The OVAL Repository
has been updated and the definitions are available for further community
review. Thanks, Mike ==================================================== Mike Lah G022 - Information
Assurance Industry Collaboration The MITRE Corporation From: Peng, Pai [mailto:[hidden email]] I'd like to submit 2 OVAL
definitions to cover AIX vulnerabilities CVE-2009-3516 and CVE-2009-3517. Thanks, Pai To unsubscribe, send an email message to
[hidden email] with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the
message. If you have difficulties, write to
[hidden email]. |
|||||||||||||||||||
| Free Embeddable Forum Powered by Nabble | Help |
