Uhlaziyo: I-Canonical ikhuphe ingxelo entsha ye-kernel ukulungisa ukungakhuseleki kane okungxamisekileyo okuphakathi

Pablinux

Imizuzu ye4

Bug kwi-Ubuntu kernel

Entsha Uhlaziyo lwe-kernel yoBuntu, kwaye le yinto elungileyo yokusebenzisa ukuhanjiswa kweLinux kunye nenkampani enkulu emva kwayo, njengeCanonical. Iinguqulelo ezihlaziyiweyo ze-kernel zikhutshelwe zonke iinguqulelo ezixhaswayo ze-Ubuntu, ezihambelana ne-Ubuntu 19.04 Disco Dingo, Ubuntu 18.04 Bionic Beaver, kunye ne-Ubuntu 16.04 Xenial Xerus. Lixesha eligqibeleleyo lokukhumbula ukuba kwakubaluleke kangakanani / kukuhlaziya ukusuka ku-Ubuntu 18.10 ukuya ku-Ubuntu 19.04, kuba sisixhobo sokuqala sokhuseleko esingafunyanwanga yiCosmic Cuttlefish ukusukela ekufikeni kwayo ekupheleni komjikelo wobomi.

Ubunzima beengxaki ezifunyanisiweyo zibhalwe ngokungxamisekileyo okuphakathi kwaye abo bafunyanwa kwiDisco Dingo bahlukile kwezo zifunyenwe kwiBionic Beaver naseXenial Xerus. Ngapha koko, kuhlaziyo lwe-Ubuntu 16.04 sifunda ukuba «Olu hlaziyo lubonelela ngohlaziyo oluhambelanayo lwe-Ubuntu 18.04 Linus Hardware Enablement (HWE) ye-Ubuntu 16.04 LTS«. Apha ngezantsi sichaza iinkcukacha ezithe kratya malunga kwafunyanwa iibhugi zalungiswa.

Ukuhlaziywa kweDisco Dingo kernel kulungisa iimpazamo ezi-4 zokhuseleko

Inguqulelo entsha ye-kernel Ubuntu 19.04 iphehlelelwe namhlanje kwaye usombulule:

  • I-CVE-2019-11487: yafunyanwa Ukuphuphuma kwenani elipheleleyo bekukho kwi-kernel ye-Linux xa ubhekisa kumaphepha, kukhokelela kwimicimbi yokusebenziseka emva kokuba ikhutshiwe. Umhlaseli wasekhaya unokusebenzisa oku ukwenza ukwaliwa kwenkonzo (ukucima okungalindelekanga) okanye enze ikhowudi yokuchasana nomthetho.
  • I-CVE-2019-11599: UJann Horn wafumanisa ukuba imeko yomdyarho ikho kwi-kernel ye-Linux xa kusenziwa inkunkuma. Umhlaseli wasekhaya unokusebenzisa oku ukwenza ukwaliwa kwenkonzo (inkqubo yengozi) okanye ukuveza ulwazi olubuthathaka.
  • I-CVE-2019-11833: Ukuphunyezwa kwenkqubo yefayile ye-ext4 kwi-kernel ye-Linux kwafunyanwa kungavali imemori ngokufanelekileyo kwezinye iimeko. Umhlaseli wendawo unokusebenzisa oku ukubonisa ulwazi olubuthathaka (inkumbulo yenkozo).
  • I-CVE-2019-11884: Ndifumene ukuba iProtokholi yoLuntu yeNkqubo yeBluetooth (HIDP) kwi-kernel yeLinux ayiqinisekisanga ngokuchanekileyo ukuba imitya yapheliswa NULL kwiimeko ezithile. Umhlaseli wendawo unokusebenzisa oku ukubonisa ulwazi olubuthathaka (inkumbulo yenkozo).

4 ezinye iibgs ezilungiswe kwi-Ubuntu 18.04 / 16.04

Uhlaziyo Ubuntu 18.04 y Ubuntu 16.04 Baye bakhululwa namhlanje kwaye bayalungisa, ukongeza kwi-bugs CVE-2019-11833 kunye neCVE-2019-11884 echazwe apha ngasentla, oku kulandelayo:

  • I-CVE-2019-11085: UAdam Zabrocki ufumanise ukuba i-Intel i915 kernel mode driver driver kwi Linux kernel khange ithintele ngokufanelekileyo mmap () uluhlu kwezinye iimeko. Umhlaseli wasekhaya unokusebenzisa oku ukwenza ukwaliwa kwenkonzo (ukucima okungalindelekanga) okanye enze ikhowudi yokuchasana nomthetho.
  • I-CVE-2019-11815: Kwafunyaniswa ukuba ekuphunyezweni komgaqo olandelwayo weDigitalgram Socket (RDS) kwiLinux kernel bekukho imeko yomdyarho ekhokelele ekusetyenzisweni emva kokukhululwa. Umgaqo-nkqubo we-RDS ubhalwe kuluhlu olungagqibekanga ku-Ubuntu. Ukuba yenziwe, umhlaseli wendawo angasebenzisa oku ukwenza ukwala inkonzo (ukucima okungalindelekanga) okanye enze ikhowudi yokuchasana nomthetho.

Okwangoku, Akwaziwa ukuba ezi bugs zikwinguqulelo yeLinux 5.2 que sele ibandakanya Ubuntu 19.10 Eoan Ermine, kodwa iCanonical ayiyihlaziyanga i-kernel, enokuthetha ukuba ayingxami njengoko inguhlobo lophuhliso okanye ayichaphazeleki ziibugs ezisandula ukufunyanwa.

Hlaziya ngoku

I-Canonical icebisa ukuhlaziywa kwabo bonke abasebenzisi be-Ubuntu 19.04, Ubuntu 18.04 kunye no-Ubuntu 16.04 ngokukhawuleza, ukusukela kwinqanaba le ukungxamiseka "okuphakathi" oko kuthetha ukuba iincukuthu akunzima ukuzixhaphaza. Ngokwam, ndingathi le yenye imeko apho ndingazukukhathazeka kakhulu, kuba iibugs kufuneka zixhatshazwe ngokufikelela ngokwasemzimbeni kwizixhobo, kodwa kuthathelwa ingqalelo ukuba ukuhlaziya kufuneka sisungule isixhobo sokuhlaziya kwaye sizisebenzise , Ndingacebisa ukuyenza ngalo naliphi na ixesha. Ukukhusela ukuze kusebenze, ikhompyuter kufuneka iqale phantsi emva kokufaka iinguqulelo ezintsha zekernel.

Ubuntu Linux 5.0.0-20.21
Inqaku elidibeneyo:
Ukuhlaziywa kweCanonical i-Ubuntu kernel kwakhona, kwakhona ngenxa yeempazamo zezokhuseleko

Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Uxanduva lwedatha: UMiguel Ángel Gatón
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.