Ukuhlaziywa kweCanonical i-Ubuntu kernel kwakhona ukulungisa ubungozi be-9

Ngaphandle kwamathandabuzo, ezona ndaba zibalulekileyo esiza kuzipapasha namhlanje kukuba iCanonical ikhuphe Ubuntu 19.10 Eoan Ermine. Oko siyalazi igama lenkqubo leyo izakwaziswa kwinyanga ezintandathu okanye balungise ubuthathaka obahlukeneyo kwi-Ubuntu kernel izakuba ngasemva. Kodwa asinakuma ngokungenzi nto ngokulinda, i-blogosphere mayingayeki, kwaye okokugqibela kuko okwenzekileyo kwiiyure ezimbalwa ezidlulileyo.

Lilonke, ingxelo entsha yekernel inayo ukulungelelaniswa kwe-9 Ukuqokelelwa kwengxelo I-USN-4157-1. Ngexesha lokubhalwa, ekuphela kwenkqubo yokusebenza abayichazayo ngu-Ubuntu 19.04, kodwa ezinye zeebugs ziphawulwe njenge "zilindile" kwi-Ubuntu 18.04 nakwi-Ubuntu 16.04. Kuzo zonke iimeko ezilithoba, Ubuntu 19.10 idweliswe "njengengachaphazeleki".

Inqaku elidibeneyo:

Uhlaziyo: I-Canonical iphinde yafaka amanqaku amaninzi kwi-kernel Ubuntu

I-Eoan Ermine kernel ayichaphazeleki

Ukusilela, okubhalwe njengophantsi okanye ophambili, zezi zilandelayo:

• I-CVE-2019-14814, I-CVE-2019-14815 y I-CVE-2019-14816: umqhubi wefowuni ye-Marvell ye-Wi-Fi kwi-kernel ye-Linux wayengayenzi imida yokujonga ngokuchanekileyo, ebangela ukugcwala kwemfumba. Umhlaseli wasekhaya unokusebenzisa oku ukwenza ukuba inkonzo iyaliwe (inkqubo ixhonyiwe) okanye enze ikhowudi yokuchasana nomthetho.
• I-CVE-2019-14821: LUkuphunyezwa kwe-KVM hypervisor kwi-kernel ye-Linux khange kusebenze ngokujonga ngokuchanekileyo xa kusingathwa imisebenzi yokubhala edityanisiweyo ye-MMIO. Umhlaseli wasekhaya onokufikelela ekubhaleni kwi / dev / kvm unokusebenzisa oku ukwenza ukuba inkonzo iyaliwe (inkqubo ixhonyiwe).
• I-CVE-2019-15504-Umqhubi we-Wi-Fi 91x kwi-kernel ye-Linux khange ayiphathe ngokufanelekileyo imeko yeempazamo zokuqalisa, ekhokelela ekubeni sesichengeni simahla. Umhlaseli osondeleyo angayisebenzisa le nto ukwenza ukuba inkonzo ingavunywa (inkqubo ixhonyiwe).
• I-CVE-2019-15505: i I-Technisat DVB-S / S2 umqhubi wesixhobo se-USB kwi-Linux kernel iqulethe umthwalo ongaphezulu. Umhlaseli osondeleyo angayisebenzisa le nto ukwenza ukuba inkonzo ingavunywa (inkqubo yengozi) okanye aveze ulwazi olubuthathaka.
• I-CVE-2019-15902: okanyeUkuncitshiswa kwesikhangeli kwenziwa ngendlela engeyiyo kwinkqubo esezantsi ye-kernel ptrace. Umhlaseli wendawo unokusebenzisa oku ukubonisa ulwazi olubuthathaka.
• I-CVE-2019-16714: LUkuphunyezwa kwe-IPv6 RDS kwi-Linux kernel bekungakhange kuqalise ngokuchanekileyo amasimi kulwakhiwo lwedatha olubuyiselwe kwisithuba somsebenzisi. Umhlaseli wendawo unokusebenzisa oku ukubonisa ulwazi olubuthathaka (inkumbulo yenkozo). Gcina ukhumbula ukuba umthetho olandelwayo we-RDS ubhalisiwe ku-Ubuntu ngokungagqibekanga.
• I-CVE-2019-2181Ukuphuphuma kwenani elipheleleyo bekukho ekuphunyezweni kwe-kernel yeBinder, ekhokelela kukugcwala kwempazamo. Umhlaseli wendawo unokusebenzisa oku ukunyusa amalungelo.

Hlaziya ngoku

Uhlaziyo Sele zifumaneka kumaziko ahlukeneyo esoftware (okanye kwi-app yohlaziyo) yazo zonke iincasa ze-Ubuntu ezisemthethweni. Nje ukuba ufake, kuya kufuneka uqale kabusha ikhompyuter yakho ukuze utshintsho luqale ukusebenza.