Sabuwar sabuntawar kwaya ta Ubuntu, amma wannan lokacin don gyara kurakuran Intel guda uku kawai

Pablinux

2 minti

Ubuntu yana gyara kurakuran tsaro na kernel

Sama da mako guda da suka wuce mun buga wata kasida A cikin abin da muka ba da rahoton cewa Canonical ya sabunta kernel na Ubuntu don rufe kurakuran tsaro da yawa. Akwai ƙarin kwari da yawa fiye da yadda aka saba a cikin wannan nau'in sabuntawa, yana da al'ada don rufe kusan 4-5. A 'yan sa'o'i da suka wuce, kamfanin ya kaddamar da wani Sabunta kwaya ta Ubuntu, amma wannan lokacin, kodayake ana ba da shawarar koyaushe don karɓar canje-canje, ba haka ba ne da gaggawa.

A zahiri, daga cikin rahotannin biyu, yawancin masu amfani suna damuwa da ɗaya kawai. Na farko shine Saukewa: USN-5484-1, kuma yana gyara kwari 5 waɗanda suka shafi Ubuntu 14.04. Mun tuna cewa wannan sigar Ubuntu, tare da shekaru 8 na rayuwa, yana cikin lokacin ESM, wato, cin gajiyar ƙarin tallafi wanda ke ci gaba da rufe kurakuran tsaro na kernel. Sauran rahoton shine Saukewa: USN-5485-1, kuma wannan yakamata ya ja hankalin mafi yawan masu amfani da Ubuntu, tunda yana shafar duk nau'ikan da aka goyan baya, gami da 16.04 da 14.04, waɗanda, kamar yadda muka ambata, suna cikin tsarin ESM.

Ubuntu yana rufe kwari uku waɗanda suka shafi duk nau'ikan sa

Kurakurai guda uku da aka rufe a cikin wannan sabon rahoto da bayanin su sune:

  • CVE-2022-21123- An gano cewa wasu na'urori na Intel ba su cika aiwatar da ayyukan tsaftacewa akan manyan abubuwan da aka raba ba. Mai hari na gida zai iya amfani da wannan don fallasa mahimman bayanai.
  • CVE-2022-21125- An gano cewa wasu na'urori na Intel ba su cika aiwatar da ayyukan tsaftacewa ba a kan abubuwan da ke cike da microarchitecture. Maharan gida na iya maharin gida zai iya amfani da wannan don fallasa mahimman bayanai.
  • CVE-2022-21166- An gano cewa wasu na'urori na Intel ba sa aikin tsaftacewa daidai lokacin takamaiman ayyukan rubuta zuwa rajista na musamman. Mai hari na gida zai iya amfani da wannan don fallasa mahimman bayanai.

Don kare kanka daga duk waɗannan barazanar, kawai ƙaddamar da kowace cibiyar software ta rarraba kuma shigar da sabbin fakitin kernel. Hakanan za'a iya shigar da su ta hanyar buɗe tasha da buga sanannen «sudo apt update && sudo apt haɓakawa«. Kodayake a cikin dukkanin lokuta uku an ambaci "mai kai hari na gida", yana da kyau a kiyaye shi, kuma sabunta farashi kadan.


Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Wanda ke da alhakin bayanan: Miguel Ángel Gatón
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.