Mazuva mashoma apfuura Canonical yakaburitsa chigamba chekuchengetedza chinogadzirisa nyaya dzekuchengetedza pamwe neUbuntu 18.04 LTS kernel, iyo inobata Ubuntu nezvose zvayakatora seKubuntu, Lubuntu, Ubuntu GNOME, Ubuntu Budgie, Ubuntu Kylin, uye Ubuntu Studio, pamwe nemamwe marongero echitatu-bato anoshandisa Ubuntu sehwaro.
Uku kunetsekana kunosanganisira kuwedzera buffer uye kufashukira kune kunze-kwemiganhu , uko anorwisa anoshandisa mufananidzo weEXT4 wakavakirwa kuitira kuti aite kodhi yekumanikidza kana kutadza kwesisitimu nekuramba sevhisi.
Nezve ino gadziriso
Muchikamu chino Yese gumi nenomwe nyaya dzekuchengetedza dzakavharwa izvo zvakagadziriswa mune ino kernel yekuvandudza kuburitswa.
Pakati pazvo isu tine hurema hutatu hunosanganisirwa (CVE-2018-10876, CVE-2018-10877, CVE-2018-10878, CVE-2018-10879, CVE-2018-10880, CVE- 2018- 10882 uye CVE-2018-10883).
Zvinomwe zvekugadzirisa tarisa kune ext4 fileystem application yeLinux kernel ivo vakawanikwa nemuchengeti wekuchengetedza Wen Xu.
Vatsvakurudzi vakati:
Kukanganisa uku kunowedzerwa kumushandisi mushure mekusunungurwa uye kudzikisira gout-yemiganhu nyora kufashukira nyaya.
Izvo zvinokuvadza zvinogona kubvumidza kodhi yekumanikidza kuti iitwe kana kuti inogona kutovharidzira iyo system kubva pakuramba kwekurwiswa kwebasa nekushandisa chakasarudzika chinogadzirwa ext4 mufananidzo.
Mufananidzo iwoyo unogona kuiswa pane isinganetsi system.
Matambudziko nehunyanzvi anoenderera
Ichi chigamba chakaburitsirwa iyo Linux Kernel inogadzirisawo mamiriro emujaho akatsanangurwa muCVE-2018-14625 inowanikwa muVS kernel kuitiswa kweiyo vsock kero
Izvo zvinogona kutungamira kune yekushandisa-mushure-yemahara mamiriro ayo anotendera wemuno anorwisa kuve nezvose zvavanoda kufumura ruzivo rwakashata pamushanyi chaiwo muchina.
Mamwe matambudziko ekuchengetedza akagadziriswa neichi chigamba ari CVE-2018-16882 uye CVE-2018-19407 inokanganisa kuuraya kweKVM (Kernel-based Virtual Machine), yakawanikwa naCFIR Cohen na Wei Wu.
Dzese nyaya idzi dzinokanganisa kernel-based virtual muchina kuitisa, izvo zvinogona kuitwa pane muyenzi chaiwo muchina.
Anorwisa wemunharaunda anowana kodzero dzehutongi pamubati kana kuti inokanganisa hurongwa.
Zvakare kuchengetedzeka kugadzirisa inogadzirisa kukanganisika kuviri muGoogle Project Zero (CVE-2018-17972 uye CVE-2018-18281) muLinux kernel kuitiswa kweiyo procfs faira system uye iyo mremap () system yekufona, iyo inogona kukonzeresa varwisi vemuno kufumura ruzivo rwehurongwa hwakaomarara kana kuita kodhi yakaipa.
Ca
Iyo yekudzoreredza inotaurisa maviri kushomeka muLinux kernel kuitiswa kweiyo procfs faira system uye iyo mremap () system kufona yakawanikwa naJann Horn weGoogle Project Zero, iyo inogona kubvumira varwisi vemuno kufumura ruzivo rwakashata kana kuita kodhi yekumanikidza.
Iyo yekuchengetedza yekugadzirisa inogadzirisawo nyaya CVE-2018-9516 yakawanikwa muLinux kernel HID debug subsystem interface.
Aya maratidziro ane chekuita nekuona kusiri kuita kwekutarisa kwekuganhurwa pasi pemamwe mamiriro, kubvumira murwisi kuwana mukana weye debugfs utility kuti awane mamwe maropafadzo kana kuramba basa.
Yenguva yekuvandudza hongu kana hongu
Kunge chero mhinduro yakaburitswa, zvakakosha kuishandisa mune edu masisitimu, saka zvinokurudzirwa kwazvo kugadzirisa iyo system kuchokwadi.
Kungofanana neCanonical inokoka vese vashandisi veUbuntu 18.04 LTS (Bionic Beever) kugadzirisa ako masheni nekukasira kuLinux kernel 4.15.0-44.47.
Ipo yeUbuntu 18.04.1 LTS kana vashandisi vanotevera vachishandisa Linux 4.18 kernel nhepfenyuro inofanirwa kukwidziridzwa kune vhezheni 4.18.0-14.15 ~ 18.04.1.
Sei kugadzirisa?
Kuti uvandudze sisitimu, ingovhura terminal uye ita inotevera mirairo mairi:
sudo apt update sudo apt full-upgrade
Pakupera kwekurodha pasi uye kuisirwa izvo zvekuvandudzwa, zvinokurudzirwa kuti komputa itangiswe patsva, iyo neshanduko nyowani dzinozoiswa panotanga system.