Canonical ya fito da facin gyara don Ubuntu 18.04 Kernel

Logo na Canonical

'Yan kwanaki da suka gabata Canonical ya fito da facin tsaro wanda ke gyara al'amuran tsaro tare da kwaya ta Ubuntu 18.04 LTS, wanda ke shafar Ubuntu da duk abubuwan da ke tattare da shi kamar Kubuntu, Lubuntu, Ubuntu GNOME, Ubuntu Budgie, Ubuntu Kylin, da Ubuntu Studio, da sauran tsarin wasu kamfanoni da ke amfani da Ubuntu a matsayin tushe.

Wadannan raunin halayen sun hada da ambaliyar ajiya da ambaliya zuwa wajen-haddi , inda mai kai hari yayi amfani da hoto na EXT4 wanda aka gina domin aiwatar da lambar sabani ko gazawar tsarin ta hanyar musun sabis ɗin.

Game da wannan sabuntawa

A cikin wannan facin Adadin batutuwan tsaro 11 aka rufe waɗanda aka warware a wannan sabuntawar kwafin.

Daga ciki muna da raunin 7 da aka haɗa (CVE-2018-10876, CVE-2018-10877, CVE-2018-10878, CVE-2018-10879, CVE-2018-10880, CVE- 2018- 10882 da CVE-2018-10883).

Bakwai daga cikin gyara koma zuwa aikace-aikacen fayil na ext4 na kernel na Linux mai binciken tsaro Wen Xu ne ya gano su.

Masu binciken sun ce:

Waɗannan lamuran suna faɗaɗa wa mai amfani bayan fitarwa kuma yana lalata lamuran gout-iyaka-iyaka game da rubuta ambaliyar ruwa.

Rashin lafiyar na iya ba da izinin aiwatar da lambar ƙididdiga ba tare da izini ba ko ma iya toshe tsarin daga ƙin amincewa da hare-haren sabis ta hanyar amfani da hoto da aka ƙera musamman na ext4.

Za a ɗora hoton a kan tsarin rauni.

Matsaloli tare da haɓaka ƙirar aiki na ci gaba

Wannan facin da aka fitar don Linux Kernel shima yana warware yanayin tseren da aka bayyana a CVE-2018-14625 samu a cikin aiwatar da kwaya ta VS na adireshin vsock

Wanne na iya haifar da yanayin amfani-bayan-kyauta wanda ke bawa maharan gida damar samun duk abin da suke buƙata don fallasa bayanai masu mahimmanci akan na'ura mai amfani ta baƙo.

Sauran matsalolin tsaro da aka warware su ta wannan facin sune CVE-2018-16882 da CVE-2018-19407 wadanda ke shafar aiwatar da KVM (Kernel based Virtual Machine), wanda CFIR Cohen da Wei Wu suka gano.

Duk waɗannan batutuwan suna shafar aiwatar da injin ƙera ƙira, wanda za a iya yi akan mashinin bako na baƙo.

Maharan na gida ya sami haƙƙin gudanarwa a kan mai masaukin baki ko ya sa tsarin ya faɗi.

Haka kuma sabunta tsaro yana gyara raunin biyu a cikin Google Project Zero (CVE-2018-17972 da CVE-2018-18281) a cikin aiwatar da kwaya ta Linux na tsarin fayil na procfs da tsarin kira na mremap (), wanda zai iya sa maharan cikin gida su tona asirin bayanan tsarin ko aiwatar da wata mummunar hanya.

tambari-canonical

Ca

Sabunta tsaro ya magance matsaloli biyu a cikin aiwatar da kwaya ta Linux na tsarin fayil na procfs da kuma tsarin mremap () wanda Jann Horn na Google Project Zero ya gano, wanda zai iya ba maharan na cikin gida damar tona bayanan sirri ko aiwatar da lambar sabani.

Updateaukakawar tsaro kuma ta gyara batun CVE-2018-9516 da aka gano a cikin ƙirar keɓaɓɓiyar ƙirar ƙirar HID ta Linux.

Wannan mahaɗin yana da alhakin gano aikin da bai dace ba na ƙayyadaddun bincike a ƙarƙashin wasu sharuɗɗa, ba wa maharin damar samun damar amfani da abubuwan cire kuzari don samun ƙarin damar ko hana sabis.

Lokaci ya yi da za a sabunta eh ko a

Kamar kowane bayani da aka saki, yana da mahimmanci mu aiwatar dashi a cikin tsarinmu, saboda haka yana da kyau a ƙara sabunta tsarin zuwa gaskiya.

Kamar yadda Canonical ke gayyatar duk masu amfani da Ubuntu 18.04 LTS (Bionic mai kaɗa) don sabunta kayan aikinka kai tsaye zuwa Linux kernel 4.15.0-44.47.

Ganin cewa ga Ubuntu 18.04.1 LTS ko kuma masu amfani daga baya masu amfani da jerin kernel na Linux 4.18 yakamata haɓaka zuwa sigar 4.18.0-14.15 ~ 18.04.1.

Yadda ake sabuntawa?

Don aiwatar da sabunta tsarin, kawai zamu bude tashar mota kuma mu aiwatar da wadannan umarnin a ciki:

sudo apt update

sudo apt full-upgrade

A ƙarshen saukarwa da shigarwa na ɗaukakawa, ana ba da shawarar cewa a sake kunna kwamfutar, wacce za a yi amfani da dukkan sabbin canje-canje a tsarin farawa.


Kasance na farko don yin sharhi

Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Wanda ke da alhakin bayanan: Miguel Ángel Gatón
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.