Har yanzu, dole ne muyi magana game da kurakuran tsaro kurakurai, amma kuma mun sake bayar da rahoto lokacin da Canonical ya riga ya gyara su. A cikin duka, an sami raunin abubuwa uku kuma an riga an sintiri, ɗayansu wanda Canonical ya lakafta a matsayin babban fifiko, yayin da sauran biyun aka lakafta su a matsayin matsakaicin matsayi. Duk raunin uku ya shafi dukkan nau'ikan Ubuntu, gami da Ubuntu 19.04, Ubuntu 18.04 LTS, da Ubuntu 16.04 LTS.
Canonical ya buga rahotanni biyu a kan waɗannan lahani uku, da Saukewa: USN-4135-1 a cikin abin da suke gaya mana game da nau'ikan Ubuntu waɗanda har yanzu suke jin daɗin goyon bayan hukuma da Saukewa: USN-4135-2 wanda ya ambaci kusan abu ɗaya, amma don Ubuntu 14.04 da Ubuntu 12.04 waɗanda a yanzu suke a matsayin sigar ESM (Tsare Tsaron Tsaro). Har yanzu ba a yanke hukunci ba cewa mafi munin kwaro na ukun ya shafi Ubuntu 19.10 Eoan Ermine.
Sabuwar kwaya tana gyara waɗannan lahani uku
- CVE-2019-14835: an gano wani abin ajiya a cikin bayanan baya (vhost_net) aiwatar da hanyar sadarwar virio a cikin kwayar Linux. Wani mai kawo hari akan bako na iya amfani da wannan don haifar da ƙin yarda da sabis (haɗarwar mai masaukin OS) ko kuma wataƙila ya aiwatar da lambar ƙa'ida akan mai masaukin OS (babban fifiko).
- CVE-2019-15030:eKernel na Linux akan gine-ginen PowerPC bai isa ya magance Facility Ba Saman keɓaɓɓu a wasu yanayi. Wani maharin gida na iya amfani da wannan don fallasa bayanai masu mahimmanci (matsakaiciyar fifiko).
- CVE-2019-15031: kwayar Linux a kan gine-ginen PowerPC ba ta isa ta magance keɓancewa ba a wasu yanayi. Wani maharin gida na iya amfani da wannan don fallasa bayanai masu mahimmanci
A cikin hanyoyin da suka gabata, kuna da dukkan bayanai game da fakitin waɗanda dole ne a sabunta su, amma a zahiri dole ne mu buɗe sabunta software ɗinmu kuma shigar da duk abin da muke gani a matsayin "Linux-". Da zarar an shigar da dukkan fakitin, dole ne mu sake farawa don canje-canje su fara aiki.
