From 0f70d5f984338343a42b3c130d2079559a67a7b6 Mon Sep 17 00:00:00 2001 From: rafabailon Date: Wed, 21 Feb 2024 15:18:53 +0100 Subject: [PATCH 1/5] feat: add new packages to vuln_packages --- .../vuln_packages.json | 240 ++++++++++++++++++ 1 file changed, 240 insertions(+) diff --git a/deps/wazuh_testing/wazuh_testing/end_to_end/vulnerability_detector_packages/vuln_packages.json b/deps/wazuh_testing/wazuh_testing/end_to_end/vulnerability_detector_packages/vuln_packages.json index 00ea6da130..9f5912d2c3 100644 --- a/deps/wazuh_testing/wazuh_testing/end_to_end/vulnerability_detector_packages/vuln_packages.json +++ b/deps/wazuh_testing/wazuh_testing/end_to_end/vulnerability_detector_packages/vuln_packages.json @@ -299,6 +299,9 @@ "macos": { "amd64": "https://nodejs.org/dist/v17.0.1/node-v17.0.1.pkg", "arm64v8": "https://nodejs.org/dist/v17.0.1/node-v17.0.1.pkg" + }, + "windows": { + "amd64": "https://nodejs.org/dist/v17.0.1/node-v17.0.1-x64.msi" } }, "uninstall_name": "node*" @@ -318,6 +321,9 @@ "macos": { "amd64": "https://nodejs.org/dist/v17.1.0/node-v17.1.0.pkg", "arm64v8": "https://nodejs.org/dist/v17.1.0/node-v17.1.0.pkg" + }, + "windows": { + "amd64": "https://nodejs.org/dist/v17.1.0/node-v17.1.0-x64.msi" } }, "uninstall_name": "node*" @@ -354,6 +360,42 @@ "macos": { "amd64": "https://nodejs.org/dist/v18.0.0/node-v18.0.0.pkg", "arm64v8": "https://nodejs.org/dist/v18.0.0/node-v18.0.0.pkg" + }, + "windows": { + "amd64": "https://nodejs.org/dist/v18.0.0/node-v18.0.0-x64.msi" + } + }, + "uninstall_name": "node*" + }, + "node-v18.1.0": { + "package_name": "node", + "package_version": "18.1.0", + "CVE": [ + "CVE-2023-38552", + "CVE-2023-32559", + "CVE-2023-32006", + "CVE-2023-32002", + "CVE-2023-30590", + "CVE-2023-30588", + "CVE-2023-30585", + "CVE-2023-30581", + "CVE-2023-23920", + "CVE-2023-23919", + "CVE-2023-23918", + "CVE-2022-43548", + "CVE-2022-35256", + "CVE-2022-35255", + "CVE-2022-32222", + "CVE-2022-32215", + "CVE-2022-32214", + "CVE-2022-32213", + "CVE-2022-32212", + "CVE-2022-3786", + "CVE-2022-3602" + ], + "urls": { + "windows": { + "amd64": "https://nodejs.org/dist/v18.1.0/node-v18.1.0-x64.msi" } }, "uninstall_name": "node*" @@ -482,6 +524,22 @@ }, "uninstall_name": "node*" }, + "node-v20.5.1": { + "package_name": "node", + "package_version": "20.5.1", + "CVE": [ + "CVE-2023-44487", + "CVE-2023-39332", + "CVE-2023-39331", + "CVE-2023-38552" + ], + "urls": { + "windows": { + "amd64": "https://nodejs.org/dist/v20.5.1/node-v20.5.1-x64.msi" + } + }, + "uninstall_name": "node*" + }, "lynx-2.8.8": { "package_name": "lynx", "package_version": "2.8.8-0.3.dev15.el7", @@ -523,5 +581,187 @@ } }, "uninstall_name": "firefox*" + }, + "mysql-5.5.18": { + "package_name": "mysql", + "package_version": "5.5.18", + "CVE": [ + "CVE-2023-22028", + "CVE-2023-22026", + "CVE-2023-22015", + "CVE-2023-22007", + "CVE-2023-21980", + "CVE-2023-21977", + "CVE-2022-21444", + "CVE-2022-21417", + "CVE-2021-22570", + "CVE-2021-2356", + "CVE-2020-15358", + "CVE-2020-14852", + "CVE-2020-14846", + "CVE-2020-14845", + "CVE-2020-14839", + "CVE-2020-14837", + "CVE-2020-14830" + ], + "urls": { + "ubuntu": { + "amd64": "https://downloads.mysql.com/archives/get/p/23/file/mysql-5.5.18-debian6.0-x86_64.deb" + } + }, + "uninstall_name": "mysql*" + }, + "mysql-5.5.19": { + "package_name": "mysql", + "package_version": "5.5.19", + "CVE": [ + "CVE-2023-22026", + "CVE-2023-22015", + "CVE-2023-22007", + "CVE-2023-21980", + "CVE-2023-21977", + "CVE-2022-21444", + "CVE-2022-21417", + "CVE-2021-22570", + "CVE-2023-22007", + "CVE-2023-22028", + "CVE-2021-2356", + "CVE-2022-21417", + "CVE-2022-21444", + "CVE-2023-21980", + "CVE-2023-21977" + ], + "urls": { + "ubuntu": { + "amd64": "https://downloads.mysql.com/archives/get/p/23/file/mysql-5.5.19-debian6.0-x86_64.deb" + } + }, + "uninstall_name": "mysql*" + }, + "mysql-5.5.20": { + "package_name": "mysql", + "package_version": "5.5.20", + "CVE": [ + "CVE-2023-22028", + "CVE-2023-22026", + "CVE-2023-22015", + "CVE-2023-22007", + "CVE-2023-21980", + "CVE-2023-21977", + "CVE-2022-21444", + "CVE-2022-21417", + "CVE-2021-22570", + "CVE-2021-2356", + "CVE-2020-15358", + "CVE-2020-14852", + "CVE-2020-14846", + "CVE-2020-14845", + "CVE-2020-14839", + "CVE-2020-14837", + "CVE-2020-14830" + ], + "urls": { + "ubuntu": { + "amd64": "https://downloads.mysql.com/archives/get/p/23/file/mysql-5.5.20-debian6.0-x86_64.deb" + } + }, + "uninstall_name": "mysql*" + }, + "mysql-5.5.21": { + "package_name": "mysql", + "package_version": "5.5.21", + "CVE": [ + "CVE-2023-22028", + "CVE-2023-22026", + "CVE-2023-22015", + "CVE-2023-22007", + "CVE-2023-21980", + "CVE-2023-21977", + "CVE-2022-21444", + "CVE-2022-21417", + "CVE-2021-22570", + "CVE-2021-2356", + "CVE-2020-15358", + "CVE-2020-14852", + "CVE-2020-14846", + "CVE-2020-14845", + "CVE-2020-14839", + "CVE-2020-14837", + "CVE-2020-14830" + ], + "urls": { + "ubuntu": { + "amd64": "https://downloads.mysql.com/archives/get/p/23/file/mysql-5.5.21-debian6.0-x86_64.deb" + } + }, + "uninstall_name": "mysql*" + }, + "openjdk-1.6.0": { + "package_name": "openjdk", + "package_version": "1.6.0", + "CVE": [ + "CVE-2023-21967", + "CVE-2023-21954", + "CVE-2023-21939", + "CVE-2023-21938", + "CVE-2023-21937", + "CVE-2023-21930", + "CVE-2014-2405", + "CVE-2014-1876", + "CVE-2014-0462", + "CVE-2012-5373", + "CVE-2012-2739" + ], + "urls": { + "centos": { + "amd64": "https://buildlogs.centos.org/c7.1611.u/java-1.6.0-openjdk/20170112172413/1.6.0.41-1.13.13.1.el7_3.x86_64/java-1.6.0-openjdk-1.6.0.41-1.13.13.1.el7_3.x86_64.rpm" + } + }, + "uninstall_name": "*openjdk*" + }, + "openjdk-1.7.0": { + "package_name": "openjdk", + "package_version": "1.7.0", + "CVE": [ + "CVE-2023-21967", + "CVE-2023-21954", + "CVE-2023-21939", + "CVE-2023-21938", + "CVE-2023-21937", + "CVE-2023-21930", + "CVE-2014-8873", + "CVE-2014-2483", + "CVE-2014-1876", + "CVE-2013-2461", + "CVE-2012-5373", + "CVE-2012-2739" + ], + "urls": { + "centos": { + "amd64": "https://buildlogs.centos.org/c7.1611.u/java-1.7.0-openjdk/20170509150838/1.7.0.141-2.6.10.1.el7_3.x86_64/java-1.7.0-openjdk-1.7.0.141-2.6.10.1.el7_3.x86_64.rpm" + } + }, + "uninstall_name": "*openjdk*" + }, + "openjdk-1.8.0": { + "package_name": "openjdk", + "package_version": "1.8.0", + "CVE": [ + "CVE-2023-21967", + "CVE-2023-21954", + "CVE-2023-21939", + "CVE-2023-21938", + "CVE-2023-21937", + "CVE-2023-21930", + "CVE-2021-20264", + "CVE-2014-1876", + "CVE-2012-2739" + ], + "urls": { + "centos": { + "amd64": "https://buildlogs.centos.org/c7.1611.u/java-1.8.0-openjdk/20170720203731/1.8.0.141-1.b16.el7_3.x86_64/java-1.8.0-openjdk-1.8.0.141-1.b16.el7_3.x86_64.rpm" + } + }, + "uninstall_name": "*openjdk*" } } From a68f2cc19ab0242592765de36b77a377d363ab29 Mon Sep 17 00:00:00 2001 From: rafabailon Date: Wed, 21 Feb 2024 15:19:34 +0100 Subject: [PATCH 2/5] feat: change test_vulnerability cases --- .../cases/test_vulnerability.yaml | 149 ++++++++---------- 1 file changed, 66 insertions(+), 83 deletions(-) diff --git a/tests/end_to_end/test_vulnerability_detector/cases/test_vulnerability.yaml b/tests/end_to_end/test_vulnerability_detector/cases/test_vulnerability.yaml index 77a755ea68..ef2dd08b56 100644 --- a/tests/end_to_end/test_vulnerability_detector/cases/test_vulnerability.yaml +++ b/tests/end_to_end/test_vulnerability_detector/cases/test_vulnerability.yaml @@ -8,14 +8,14 @@ amd64: ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], arm64v8: ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], windows: - Used Package: VLC 3.0.6 - Exe Format - CVE: ["CVE-2023-47360", "CVE-2023-47359", "CVE-2023-46814", "CVE-2022-41325", "CVE-2020-26664", "CVE-2019-19721", "CVE-2019-13962", "CVE-2019-13602", "CVE-2019-12874", "CVE-2019-5460", "CVE-2019-5459", "CVE-2019-5439"], + Used Package: Node 17.0.1 - Exe Format + CVE: ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], ubuntu: - Used Package Grafana 8.5.5 - .deb Format - CVE: ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + Used Package Mysql 5.5.20 - .deb Format + CVE: ["CVE-2023-22028", "CVE-2023-22026", "CVE-2023-22015", "CVE-2023-22007", "CVE-2023-21980", "CVE-2023-21977", "CVE-2022-21444", "CVE-2022-21417", "CVE-2021-22570", "CVE-2021-2356", "CVE-2020-15358", "CVE-2020-14852", "CVE-2020-14846", "CVE-2020-14845", "CVE-2020-14839", "CVE-2020-14837", "CVE-2020-14830"] centos: - Used Package Grafana - .rpm Format - CVE: ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + Used Package Openjdk 1.6.0 - .rpm Format + CVE: ["CVE-2023-21967", "CVE-2023-21954", "CVE-2023-21939", "CVE-2023-21938", "CVE-2023-21937", "CVE-2023-21930", "CVE-2014-2405", "CVE-2014-1876", "CVE-2014-0462", "CVE-2012-5373", "CVE-2012-2739"] preconditions: null body: tasks: @@ -26,13 +26,11 @@ state_index: true package: centos: - amd64: grafana-8.5.5 - arm64v8: grafana-8.5.5 + amd64: openjdk-1.6.0 ubuntu: - amd64: grafana-8.5.5 - arm64v8: grafana-8.5.5 + amd64: mysql-5.5.20 windows: - amd64: vlc-3.0.6 + amd64: node-v17.0.1 macos: amd64: node-v17.0.1 arm64v8: node-v17.0.1 @@ -45,18 +43,18 @@ CVES Expected to mitigate: ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], windows: - Used Package: VLC 3.0.6 - Exe Format + Used Package: Node 17.0.1 - Exe Format CVES Expected to mitigate: - ["CVE-2023-47360", "CVE-2023-47359", "CVE-2023-46814", "CVE-2022-41325", "CVE-2020-26664", "CVE-2019-19721", "CVE-2019-13962", "CVE-2019-13602", "CVE-2019-12874", "CVE-2019-5460", "CVE-2019-5459", "CVE-2019-5439"], + ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], ubuntu: - Used Package Grafana 8.5.5 - .deb Format + Used Package Mysql 5.5.20 - .deb Format CVES Expected to mitigate: - ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + ["CVE-2023-22028", "CVE-2023-22026", "CVE-2023-22015", "CVE-2023-22007", "CVE-2023-21980", "CVE-2023-21977", "CVE-2022-21444", "CVE-2022-21417", "CVE-2021-22570", "CVE-2021-2356", "CVE-2020-15358", "CVE-2020-14852", "CVE-2020-14846", "CVE-2020-14845", "CVE-2020-14839", "CVE-2020-14837", "CVE-2020-14830"] centos: - Used Package Grafana - .rpm Format + Used Package Openjdk 1.6.0 - .rpm Format CVE Expected to mitigate: - ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + ["CVE-2023-21967", "CVE-2023-21954", "CVE-2023-21939", "CVE-2023-21938", "CVE-2023-21937", "CVE-2023-21930", "CVE-2014-2405", "CVE-2014-1876", "CVE-2014-0462", "CVE-2012-5373", "CVE-2012-2739"] preconditions: null body: tasks: @@ -67,13 +65,11 @@ state_index: true package: centos: - amd64: grafana-8.5.5 - arm64v8: grafana-8.5.5 + amd64: openjdk-1.6.0 ubuntu: - amd64: grafana-8.5.5 - arm64v8: grafana-8.5.5 + amd64: mysql-5.5.20 windows: - amd64: vlc-3.0.6 + amd64: node-v17.0.1 macos: amd64: node-v17.0.1 arm64v8: node-v17.0.1 @@ -87,14 +83,14 @@ amd64: ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], arm64v8: ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], windows: - Used Package: VLC 3.0.7 - Exe Format + Used Package: Node 17.1.0 - Exe Format "CVE": ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], ubuntu: - Used Package Grafana 8.5.6 - .deb Format - CVE: ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + Used Package Mysql 5.5.21 - .deb Format + CVE: ["CVE-2023-22028", "CVE-2023-22026", "CVE-2023-22015", "CVE-2023-22007", "CVE-2023-21980", "CVE-2023-21977", "CVE-2022-21444", "CVE-2022-21417", "CVE-2021-22570", "CVE-2021-2356", "CVE-2020-15358", "CVE-2020-14852", "CVE-2020-14846", "CVE-2020-14845", "CVE-2020-14839", "CVE-2020-14837", "CVE-2020-14830"] centos: - Used Package Grafana 8.5.6 - .rpm Format - CVE: ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + Used Package Openjdk 1.7.0 - .rpm Format + CVE: ["CVE-2023-21967", "CVE-2023-21954", "CVE-2023-21939", "CVE-2023-21938", "CVE-2023-21937", "CVE-2023-21930", "CVE-2014-8873", "CVE-2014-2483", "CVE-2014-1876", "CVE-2013-2461", "CVE-2012-5373", "CVE-2012-2739"] preconditions: tasks: - operation: install_package @@ -104,13 +100,11 @@ state_index: true package: centos: - amd64: grafana-8.5.5 - arm64v8: grafana-8.5.5 + amd64: openjdk-1.6.0" ubuntu: - amd64: grafana-8.5.5 - arm64v8: grafana-8.5.5 + amd64: mysql-5.5.20 windows: - amd64: vlc-3.0.6 + amd64: node-v17.0.1 macos: amd64: node-v17.0.1 arm64v8: node-v17.0.1 @@ -124,24 +118,21 @@ package: from: centos: - amd64: grafana-8.5.5 - arm64v8: grafana-8.5.5 + amd64: openjdk-1.6.0" ubuntu: - amd64: grafana-8.5.5 - arm64v8: grafana-8.5.5 + amd64: mysql-5.5.20 windows: - amd64: vlc-3.0.6 + amd64: node-v17.0.1 macos: amd64: node-v17.0.1 arm64v8: node-v17.0.1 to: centos: - amd64: firefox-91.13.0 - arm64v8: grafana-8.5.6 + amd64: openjdk-1.7.0" ubuntu: - amd64: grafana-8.5.6 + amd64: mysql-5.5.21 windows: - amd64: vlc-3.0.6 + amd64: node-v17.1.0 macos: amd64: node-v17.1.0 arm64v8: node-v17.1.0 @@ -154,14 +145,14 @@ Used Package: Node 18.11.0 - PKG Format CVES: ["CVE-2023-38552", "CVE-2023-32559", "CVE-2023-32006", "CVE-2023-32002", "CVE-2023-30590", "CVE-2023-30588", "CVE-2023-30585", "CVE-2023-30581", "CVE-2023-23920", "CVE-2023-23919", "CVE-2023-23918", "CVE-2022-32222"], windows: - Used Package: VLC 3.0.7.1 - Exe Format - "CVE": ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], + Used Package: Node 18.0.0 - Exe Format + "CVE": ["CVE-2023-38552", "CVE-2023-32559", "CVE-2023-32006", "CVE-2023-32002", "CVE-2023-30590", "CVE-2023-30589", "CVE-2023-30588", "CVE-2023-30585", "CVE-2023-30581", "CVE-2023-23920", "CVE-2023-23919", "CVE-2023-23918", "CVE-2022-43548", "CVE-2022-35256", "CVE-2022-35255", "CVE-2022-32223", "CVE-2022-32222", "CVE-2022-32215", "CVE-2022-32214", "CVE-2022-32213", "CVE-2022-32212", "CVE-2022-3786", "CVE-2022-3602"], ubuntu: - Used Package Grafana 9.1.1 - .deb Format - CVE: ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + Used Package Mysql 5.5.19 - .deb Format + CVE: ["CVE-2023-22026", "CVE-2023-22015", "CVE-2023-22007", "CVE-2023-21980", "CVE-2023-21977", "CVE-2022-21444", "CVE-2022-21417", "CVE-2021-22570", "CVE-2023-22007", "CVE-2023-22028", "CVE-2021-2356", "CVE-2022-21417", "CVE-2022-21444", "CVE-2023-21980", "CVE-2023-21977"] centos: - Used Package Grafana 9.1.1 - .rpm Format - CVE: ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + Used Package Openjdk 1.7.0" - .rpm Format + CVE: ["CVE-2023-21967", "CVE-2023-21954", "CVE-2023-21939", "CVE-2023-21938", "CVE-2023-21937", "CVE-2023-21930", "CVE-2014-8873", "CVE-2014-2483", "CVE-2014-1876", "CVE-2013-2461", "CVE-2012-5373", "CVE-2012-2739"] preconditions: null body: tasks: @@ -173,25 +164,21 @@ package: from: centos: - amd64: grafana-8.5.6 - arm64v8: grafana-8.5.6 + amd64: openjdk-1.6.0" ubuntu: - amd64: grafana-8.5.6 - arm64v8: grafana-8.5.6 + amd64: mysql-5.5.18 windows: - amd64: vlc-3.0.7 + amd64: node-v17.1.0 macos: amd64: node-v17.1.0 arm64v8: node-v17.1.0 to: centos: - amd64: grafana-9.1.1 - arm64v8: grafana-9.1.1 + amd64: openjdk-1.7.0" ubuntu: - amd64: grafana-9.1.1 - arm64v8: grafana-9.1.1 + amd64: mysql-5.5.19 windows: - amd64: vlc-3.0.7.1 + amd64: node-v18.0.0 macos: amd64: node-v18.11.0 arm64v8: node-v18.11.0 @@ -206,14 +193,14 @@ Used Package: Node 18.12.0 - PKG Format "CVE": ["CVE-2023-44487", "CVE-2023-38552", "CVE-2023-32002", "CVE-2023-30590", "CVE-2023-30588", "CVE-2023-30585", "CVE-2023-23936", "CVE-2023-23920", "CVE-2023-23919", "CVE-2023-23918", "CVE-2022-43548", "CVE-2022-3786", "CVE-2022-3602"], windows: - Used Package: VLC 3.0.11 - Exe Format - "CVE": ["CVE-2022-21824", "CVE-2022-0778", "CVE-2021-44533", "CVE-2021-44532", "CVE-2021-44531", "CVE-2021-4044"], + Used Package: Node 18.1.0 - Exe Format + "CVE": ["CVE-2023-38552", "CVE-2023-32559", "CVE-2023-32006", "CVE-2023-32002", "CVE-2023-30590", "CVE-2023-30588", "CVE-2023-30585", "CVE-2023-30581", "CVE-2023-23920", "CVE-2023-23919", "CVE-2023-23918", "CVE-2022-43548", "CVE-2022-35256", "CVE-2022-35255", "CVE-2022-32222", "CVE-2022-32215", "CVE-2022-32214", "CVE-2022-32213", "CVE-2022-32212", "CVE-2022-3786", "CVE-2022-3602"], ubuntu: - Used Package Grafana 9.2.0 - .deb Format - CVE: ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + Used Package Mysql 5.5.19 - .deb Format + CVE: ["CVE-2023-22026", "CVE-2023-22015", "CVE-2023-22007", "CVE-2023-21980", "CVE-2023-21977", "CVE-2022-21444", "CVE-2022-21417", "CVE-2021-22570", "CVE-2023-22007", "CVE-2023-22028", "CVE-2021-2356", "CVE-2022-21417", "CVE-2022-21444", "CVE-2023-21980", "CVE-2023-21977"] centos: - Used Package Grafana 9.2.0 - .rpm Format - CVE: ["CVE-2023-2183", "CVE-2023-1410", "CVE-2023-0594", "CVE-2023-0507", "CVE-2022-39324", "CVE-2022-39307", "CVE-2022-39306", "CVE-2022-39229", "CVE-2022-39201", "CVE-2022-36062", "CVE-2022-35957", "CVE-2022-31130", "CVE-2022-31123", "CVE-2022-31107", "CVE-2022-31097", "CVE-2022-23552", "CVE-2022-23498"] + Used Package Openjdk 1.8.0 - .rpm Format + CVE: ["CVE-2023-21967", "CVE-2023-21954", "CVE-2023-21939", "CVE-2023-21938", "CVE-2023-21937", "CVE-2023-21930", "CVE-2021-20264", "CVE-2014-1876", "CVE-2012-2739"] preconditions: null body: tasks: @@ -225,25 +212,21 @@ package: from: centos: - amd64: grafana-9.1.1 - arm64v8: grafana-9.1.1 + amd64: openjdk-1.7.0 ubuntu: - amd64: grafana-9.1.1 - arm64v8: grafana-9.1.1 + amd64: mysql-5.5.18 windows: - amd64: vlc-3.0.7.1 + amd64: node-v18.0.0 macos: amd64: node-v18.11.0 arm64v8: node-v18.11.0 to: centos: - amd64: grafana-9.2.0 - arm64v8: grafana-9.2.0 + amd64: openjdk-1.8.0 ubuntu: - amd64: grafana-9.2.0 - arm64v8: grafana-9.2.0 + amd64: mysql-5.5.19 windows: - amd64: vlc-3.0.11 + amd64: node-v18.1.0 macos: amd64: node-v18.12.0 arm64v8: node-v18.12.0 @@ -256,7 +239,7 @@ Used Package: Node 19.5.0 - PKG Format "CVE": [], windows: - Used Package: VLC 3.0.11 - Exe Format + Used Package: Node 19.5.0 - Exe Format "CVE": [], ubuntu: Used Package Grafana 9.4.17 - .deb Format @@ -281,7 +264,7 @@ amd64: grafana-9.2.0 arm64v8: grafana-9.2.0 windows: - amd64: vlc-3.0.11 + amd64: node-v18.1.0 macos: amd64: node-v18.12.0 arm64v8: node-v18.12.0 @@ -293,7 +276,7 @@ arm64v8: grafana-9.4.17 amd64: grafana-9.4.17 windows: - amd64: vlc-3.0.20 + amd64: node-v19.5.0 macos: amd64: node-v19.5.0 arm64v8: node-v19.5.0 @@ -340,7 +323,7 @@ arm64v8: grafana-9.4.17 amd64: grafana-9.4.17 windows: - amd64: vlc-3.0.20 + amd64: node-v19.5.0 macos: amd64: node-v19.5.0 arm64v8: node-v19.5.0 @@ -365,8 +348,8 @@ Used Package: Node 20.0.0 - PKG Format "CVE": ["CVE-2023-44487", "CVE-2023-39332", "CVE-2023-39331", "CVE-2023-38552", "CVE-2023-32559", "CVE-2023-32558", "CVE-2023-32006", "CVE-2023-32005", "CVE-2023-32004", "CVE-2023-32003", "CVE-2023-32002", "CVE-2023-30590", "CVE-2023-30588", "CVE-2023-30586", "CVE-2023-30585", "CVE-2023-30581"], windows: - Used Package: Node 20.0.0 - Exe Format - "CVE": ["CVE-2023-44487", "CVE-2023-39332", "CVE-2023-39331", "CVE-2023-38552", "CVE-2023-32559", "CVE-2023-32558", "CVE-2023-32006", "CVE-2023-32005", "CVE-2023-32004", "CVE-2023-32003", "CVE-2023-32002", "CVE-2023-30590", "CVE-2023-30588", "CVE-2023-30586", "CVE-2023-30585", "CVE-2023-30581"], + Used Package: Node 20.5.1 - Exe Format + "CVE": ["CVE-2023-44487", "CVE-2023-39332", "CVE-2023-39331", "CVE-2023-38552"], ubuntu: Used Package Grafana 9.5.13 - .deb Format CVE: ["CVE-2023-4822", "CVE-2023-4399"], @@ -389,7 +372,7 @@ ubuntu: amd64: grafana-8.5.5 windows: - amd64: vlc-3.0.6 + amd64: node-v19.6.0 macos: amd64: node-v19.6.0 arm64v8: node-v19.6.0 @@ -400,7 +383,7 @@ ubuntu: amd64: grafana-8.5.5 windows: - amd64: vlc-3.0.6 + amd64: node-v20.5.1 macos: amd64: node-v20.0.0 arm64v8: node-v20.0.0 @@ -437,7 +420,7 @@ amd64: grafana-9.5.13 arm64v8: grafana-9.5.13 windows: - amd64: node-v19.6.0 + amd64: node-v19.5.0 macos: amd64: node-v19.6.0 arm64v8: node-v19.6.0 @@ -472,7 +455,7 @@ amd64: grafana-9.5.13 arm64v8: grafana-9.5.13 windows: - amd64: node-v19.6.0 + amd64: node-v19.5.0 macos: amd64: node-v19.6.0 arm64v8: node-v19.6.0 From 9b4e3f634be859d5b18951a0b908476ecced984e Mon Sep 17 00:00:00 2001 From: rafabailon Date: Wed, 6 Mar 2024 17:55:28 +0100 Subject: [PATCH 3/5] feat: add conditional to differentiate extensions in windows --- deps/wazuh_testing/wazuh_testing/tools/system.py | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/deps/wazuh_testing/wazuh_testing/tools/system.py b/deps/wazuh_testing/wazuh_testing/tools/system.py index a15454bdfc..92a853e98e 100644 --- a/deps/wazuh_testing/wazuh_testing/tools/system.py +++ b/deps/wazuh_testing/wazuh_testing/tools/system.py @@ -482,9 +482,13 @@ def install_package(self, host, url, system='ubuntu'): host_manager.install_package('my_host', 'http://example.com/package.deb', system='ubuntu') """ result = False + extension = '.msi' if system == 'windows': - result = self.get_host(host).ansible("win_package", f"path={url} arguments=/S", check=False) + if url.lower().endswith(extension): + result = self.get_host(host).ansible("win_package", f"path={url} arguments=/passive", check=False) + else: + result = self.get_host(host).ansible("win_package", f"path={url} arguments=/S", check=False) elif system == 'ubuntu': result = self.get_host(host).ansible("apt", f"deb={url}", check=False) if result['changed'] and result['stderr'] == '': From 6d11aea8d7f9fa0226f2fc0f04b4e5aa1c8a0581 Mon Sep 17 00:00:00 2001 From: rafabailon Date: Fri, 8 Mar 2024 10:02:25 +0100 Subject: [PATCH 4/5] feat: remove quotes and add entry to changelog --- CHANGELOG.md | 1 + .../cases/test_vulnerability.yaml | 12 ++++++------ 2 files changed, 7 insertions(+), 6 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index f5559cf3e2..4b1ae8e101 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -20,6 +20,7 @@ All notable changes to this project will be documented in this file. ### Changed +- Update Packages in TestScanSyscollectorCases ([#4997](https://github.com/wazuh/wazuh-qa/pull/4997)) \- (Tests) - Reduced test_shutdown_message runtime ([#4986](https://github.com/wazuh/wazuh-qa/pull/4986)) \- (Tests) - Change e2e vd configuration keystore ([#4952](https://github.com/wazuh/wazuh-qa/pull/4952)) \- (Framework) - Updating tests after removing references to the legacy vulnerability detector module ([#4872](https://github.com/wazuh/wazuh-qa/pull/4872)) \- (Tests) diff --git a/tests/end_to_end/test_vulnerability_detector/cases/test_vulnerability.yaml b/tests/end_to_end/test_vulnerability_detector/cases/test_vulnerability.yaml index ef2dd08b56..90605a7ffb 100644 --- a/tests/end_to_end/test_vulnerability_detector/cases/test_vulnerability.yaml +++ b/tests/end_to_end/test_vulnerability_detector/cases/test_vulnerability.yaml @@ -100,7 +100,7 @@ state_index: true package: centos: - amd64: openjdk-1.6.0" + amd64: openjdk-1.6.0 ubuntu: amd64: mysql-5.5.20 windows: @@ -118,7 +118,7 @@ package: from: centos: - amd64: openjdk-1.6.0" + amd64: openjdk-1.6.0 ubuntu: amd64: mysql-5.5.20 windows: @@ -128,7 +128,7 @@ arm64v8: node-v17.0.1 to: centos: - amd64: openjdk-1.7.0" + amd64: openjdk-1.7.0 ubuntu: amd64: mysql-5.5.21 windows: @@ -151,7 +151,7 @@ Used Package Mysql 5.5.19 - .deb Format CVE: ["CVE-2023-22026", "CVE-2023-22015", "CVE-2023-22007", "CVE-2023-21980", "CVE-2023-21977", "CVE-2022-21444", "CVE-2022-21417", "CVE-2021-22570", "CVE-2023-22007", "CVE-2023-22028", "CVE-2021-2356", "CVE-2022-21417", "CVE-2022-21444", "CVE-2023-21980", "CVE-2023-21977"] centos: - Used Package Openjdk 1.7.0" - .rpm Format + Used Package Openjdk 1.7.0 - .rpm Format CVE: ["CVE-2023-21967", "CVE-2023-21954", "CVE-2023-21939", "CVE-2023-21938", "CVE-2023-21937", "CVE-2023-21930", "CVE-2014-8873", "CVE-2014-2483", "CVE-2014-1876", "CVE-2013-2461", "CVE-2012-5373", "CVE-2012-2739"] preconditions: null body: @@ -164,7 +164,7 @@ package: from: centos: - amd64: openjdk-1.6.0" + amd64: openjdk-1.6.0 ubuntu: amd64: mysql-5.5.18 windows: @@ -174,7 +174,7 @@ arm64v8: node-v17.1.0 to: centos: - amd64: openjdk-1.7.0" + amd64: openjdk-1.7.0 ubuntu: amd64: mysql-5.5.19 windows: From 1891d362053eaea0e45677a932fce1f89d314d0c Mon Sep 17 00:00:00 2001 From: rafabailon Date: Fri, 8 Mar 2024 10:08:16 +0100 Subject: [PATCH 5/5] feat: update changelog entry --- CHANGELOG.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 4b1ae8e101..445379dad5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -20,7 +20,7 @@ All notable changes to this project will be documented in this file. ### Changed -- Update Packages in TestScanSyscollectorCases ([#4997](https://github.com/wazuh/wazuh-qa/pull/4997)) \- (Tests) +- Update Packages in TestScanSyscollectorCases ([#4997](https://github.com/wazuh/wazuh-qa/pull/4997)) \- (Framework + Tests) - Reduced test_shutdown_message runtime ([#4986](https://github.com/wazuh/wazuh-qa/pull/4986)) \- (Tests) - Change e2e vd configuration keystore ([#4952](https://github.com/wazuh/wazuh-qa/pull/4952)) \- (Framework) - Updating tests after removing references to the legacy vulnerability detector module ([#4872](https://github.com/wazuh/wazuh-qa/pull/4872)) \- (Tests)