Ana iya amfani da raunin Ghostscript don samun damar fayiloli mara izini a cikin Ubuntu

Pablinux

2 minti

Canje-canje a cikin Ubuntu: Ghostscript da Ceph

Bayan 'yan sa'o'i da suka wuce, Canonical Ya buga rahoton da yake magana a kansa a yanayin rauni a cikin Ghostscript Yana shafar duk nau'ikan Ubuntu waɗanda har yanzu ana tallafawa cikin tsarin rayuwarsu ta yau da kullun. A yanzu haka, waɗancan sifofi sune Ubuntu 19.04 Disco Dingo, Ubuntu 18.04 LTS Bionic Beaver, da Ubuntu 16.04 LTS Xenial Xerus. Manhajan da abin ya shafa shine "fatalwa - PostScript da mai fassarar PDF" kuma facin ya gyara jimillar raunin 4 CVE.

Rashin lafiyar da aka gano kuma an riga an gyara sune CVE-2019-14811, CVE-2019-14812, CVE-2019-14813 y CVE-2019-14817, dukkansu anyi musu kamar matsakaiciyar gaggawa. Dukkanin huɗun sun ba da yawancin bayanin dalla-dalla game da 'Yanayin Byauratarwa ByPass ta .fitowa a cikin» .pdf_hook_DSC_Mahalicci, setuserparams, tsarin tsarin kuma.pdfexectoken bi da bi. Kunshin sabuntawa sune fatalwar fatalwa - 9.26 ~ dfsg + 0-0ubuntu7.3 y libgs9 – 9.26~dfsg+0-0ubuntu7.3 akan Ubuntu 19.04, fatalwar fatalwa - 9.26 ~ dfsg + 0-0ubuntu0.18.04.11 y libgs9 – 9.26~dfsg+0-0ubuntu0.18.04.11 akan Ubuntu 18.04 da fatalwar fatalwa - 9.26 ~ dfsg + 0-0ubuntu0.16.04.11 y libgs9 – 9.26~dfsg+0-0ubuntu0.16.04.11 akan Ubuntu 16.04.

Rashin lafiyar a cikin Ghostscript ya zo tare da ɗaya a Ceph

Wannan raunin cikin Ghostscript ba shine kawai wanda Canonical ya sake ba a yau. Ba da daɗewa ba kuma ya ba da rahoto wasu, a wannan yanayin a cikin «ceph - rarraba ajiya da tsarin fayil«, Wanne ya shafi Ubuntu 19.04 da Ubuntu 18.04. Kuskuren da aka bi kuma an riga an gyara shi ne CVE-2019-10222 da cikakkun bayanai game da wani rauni na matsakaicin gaggawa wanda ceph ana iya amfani dashi don toshe kanta idan ta karɓi keɓaɓɓen hanyar sadarwar hanyar sadarwa. Wani mai kawo harin nesa zai iya amfani da wannan aurar don haifar da hana sabis (DoS). Alamar da za'a yi amfani da ita a wannan yanayin sune ceph - 13.2.6-0ubuntu0.19.04.3 y radosgw - 13.2.6-0ubuntu0.19.04.3 akan Ubuntu 19.04 da ceph - 12.2.12-0ubuntu0.18.04.2 y radosgw - 12.2.12-0ubuntu0.18.04.2 akan Ubuntu 18.04.

Dukkanin faci suna nan a matsayin sabuntawa, don haka amfani da su da kuma kiyaye kanmu daga raunin da aka ambata a cikin wannan labarin yana da sauƙi kamar buɗe aikace-aikacen Softwareaukaka Software ko kowane cibiyar software da yi amfani da sabuntawa.

Kafaffen yanayin rauni na PHP
Labari mai dangantaka:
Canonical yana gyara raunin PHP a cikin duk nau'ikan Ubuntu mai goyan baya

Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Wanda ke da alhakin bayanan: Miguel Ángel Gatón
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.

  1.   Fernando m
    sa 5 shekaru

    Abinda muka saba, dole ne kawai mu ci gaba da sabunta Ubuntu ɗinmu kuma babu dalilin damu. Godiya ga bayanin.

    Amsa wa Fernando