Canonical ya Sake Babban Kernel Sabuntawa don Ubuntu 16.04

Hadin kan Ubuntu

Kuskuren tsaro a cikin Linux galibi 'yan kaɗan ne, amma facin da kawai aka fitar ta Canonical ya nuna cewa wannan ba koyaushe lamarin bane. Kamfanin da Mark Shuttleworth ke gudanarwa ya fitar da sabunta kwaya don Ubuntu 16.04 LTS (Xenial Xerus) wanda ke gyara har zuwa kwari biyar da masu bincike na tsaro daban-daban suka gano a cikin kwaya ta 4.4, kwaya ce da ke cikin tsarin aiki da Canonical ya fitar shekaru 3 da suka gabata, a cikin watan Afrilu na 2016. Duk ire-iren Ubuntu kuma ana shafa su da amfani iri ɗaya.

Gyaran ya riga ya kasance a cikin Linux 4.15 HWE wanda ya haɗa da Ubuntu 18.04 LTS, don haka sauran sakewar rayuwa na watanni 9, watau waɗanda ba LTS ba kamar ana shafa su ma. Ma'anar ita ce Canonical kawai ta ba da wannan sabuntawa ga masu amfani waɗanda tsarin aikinsu ya lalace kuma waɗanda har yanzu suke jin daɗin goyon bayan hukuma. Ubuntu 14.04 za ta ji daɗin tallafi har zuwa Afrilu 30 amma ba ta shafi kwayarsa ba Laifi 5 ambata a cikin wannan labarin.

Ubuntu 16.04 ernaukaka Kernel ya Gyara Kwarin 5 na Tsaro

Guda biyar da aka gyara sune:

  • El CVE-2017-18241- F2FS tsarin fayil aiwatar aiwatar kasa kuskure dutsen zaɓi noflus_merge.
  • CVE-2018-7740: mai alaƙa da kuskuren da ya gabata, amma a wannan yanayin a cikin ɗumbin abubuwa masu yawa a cikin aiwatarwa syeda. Wannan da kwaron da ya gabata na iya ƙyale mai amfani da ƙeta na gida ya yi amfani da yanayin rauni ta hanyar hana sabis.
  • El CVE-2018-1120 an gano a cikin tsarin fayil procfs kuma ya ba da damar mai amfani da mummunan yanki don toshe wasu kayan aikin da aka yi amfani da su don bincika tsarin fayil procfs don bayar da rahoto game da yanayin tsarin aiki saboda ya kasa gudanar da ayyukan taswira daidai a cikin abubuwan ƙwaƙwalwar.
  • CVE-2019-6133 ya ba mai amfani mai cutarwa na gida damar samun dama ga sabis ɗin da aka adana izini.
  • CVE-2018-19985 yana iya ba da izini ga mai kusantowa na jiki ya haifar da lalacewar tsarin.

Canonical yana ba da shawarar duk masu amfani da abin ya shafa su sabunta da wuri-wuri zuwa nau'in 4.4 na kernel wanda ya riga ya kasance a cikin wuraren ajiya na hukuma. Da kaina, la'akari da cewa duk wani kwari yakamata mahaɗan yankin suyi amfani da su, zan sabunta nan ba da daɗewa ba, amma ba zan damu da yawa ba. Kai fa?


Kasance na farko don yin sharhi

Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Wanda ke da alhakin bayanan: Miguel Ángel Gatón
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.