Ba tare da wata shakka ba, mafi mahimman labarai da za mu buga a yau shi ne Canonical ya saki Ubuntu 19.10 Eoan Ermine. Wannan mun san sunan tsarin hakan za a fara shi cikin watanni shida ko kuma cewa sun gyara matsaloli daban-daban a cikin kwayar Ubuntu zai kasance a bango. Amma ba za mu iya tsayawa ba tare da jira ba, dole ne shafin yanar gizo ya tsaya, kuma ƙarshen abin da ya faru ne a cikin 'yan awanni kaɗan.
Gabaɗaya, sabon nau'in kwaya yana da gyarawa 9 rauni tattara a cikin rahoton Saukewa: USN-4157-1. A lokacin wannan rubutun, kawai tsarin aikin da suka ambata shine Ubuntu 19.04, amma wasu daga cikin kwari ana musu alama "suna jiran" a Ubuntu 18.04 da Ubuntu 16.04. A cikin dukkan lamuran tara, Ubuntu 19.10 an lasafta shi a matsayin "ba a taɓa shi ba".
Ba a shafa kernel na Eoan Ermine ba
Rashin nasara, wanda aka yiwa alama a matsayin ƙaramar matsakaici ko matsakaici, sune kamar haka:
- CVE-2019-14814, CVE-2019-14815 y CVE-2019-14816: direban na'urar Marvell Wi-Fi a cikin kernel na Linux ba ya yin iyakokin duba daidai, yana haifar da tuddai. Wani maharan gida na iya amfani da wannan don haifar da ƙin yarda da sabis (rataye tsarin) ko kuma yiwuwar aiwatar da lambar ƙeta doka.
- CVE-2019-14821: LAikace-aikacen hypervisor na KVM a cikin kernel na Linux baiyi aikin duba iyaka ba daidai lokacin sarrafa abubuwan haɗin MMIO da aka haɗu. Wani maharan gida tare da damar rubuta zuwa / dev / kvm na iya amfani da wannan don haifar da ƙin sabis (rataye tsarin).
- CVE-2019-15504- The Wi-Fi 91x direba a cikin Linux kwaya ba yadda ya kamata rike da farawa kuskure yanayi, haifar da wani sau biyu rauni rauni. Wani maƙiyin da ke kusa da jiki na iya amfani da wannan don haifar da ƙin ba da sabis (rataye tsarin).
- CVE-2019-15505: da Technisat DVB-S / S2 USB direban na'urar cikin kernel na Linux ya ƙunshi oder overloader. Wani maharin da ke kusa da jiki na iya amfani da wannan don haifar da ƙin yarda da sabis (haɗarin tsarin) ko kuma iya tona asirin bayanai masu mahimmanci.
- CVE-2019-15902: koAn aiwatar da ragin Specter ba daidai ba a cikin tsarin tsarin kernel ptrace na Linux. Wani maharin gida na iya amfani da wannan don fallasa bayanai masu mahimmanci.
- CVE-2019-16714: LAiwatar da IPv6 RDS a cikin kernel na Linux ba ingantattun filaye bane a cikin tsarin bayanai da aka mayar da su sararin mai amfani. Wani maharin gida na iya amfani da wannan don fallasa bayanai masu mahimmanci (ƙwaƙwalwar ajiyar kernel). Ka tuna cewa yarjejeniyar RDS tana cikin baƙi a cikin Ubuntu ta tsohuwa.
- CVE-2019-2181: Adadin adadin ya kasance a cikin aiwatar da kwafin Linux na Binder, wanda ke haifar da ambaliyar ajiya. Wani maharin gida na iya amfani da wannan don haɓaka gata.
Sabunta yanzu
Sabuntawa ana samun su a cikin cibiyoyin software daban-daban (ko a cikin aikace-aikacen sabuntawa) na duk dandano na Ubuntu. Da zarar an girka, zaka buƙaci sake kunna kwamfutarka don canje-canjen ya fara aiki.