Ama-Canonical patches afinyelela ku-7 Apache HTTP Server ukuba sengozini kuzo zonke izinhlobo ze-Ubuntu ezisekelwayo

Pablinux

Imizuzu ye-2

Iseva ye-Apache HTTP engavikelekile

Ngokwami, ngicabanga njenginingi lenu: akukho okumele nikhathazeke ngakho. Ubuntu, njenganoma ikuphi okunye ukusatshalaliswa kwe-Linux, kuyisistimu yokusebenza ephephe kakhulu, ngokwengxenye sibonga umphakathi osiza ukulungisa izimbungulu ngokushesha lapho zitholakala. Futhi, iCanonical yinkampani enkulu ephendula ngezinsuku, uma kungenjalo amahora, kepha le yibhulogi ekhuluma ngo-Ubuntu futhi kwesinye isikhathi kufanele sibike amaphutha ezokuphepha, njenge Ukuba sengozini kweseva ye-Apache HTTP ukuthi inkampani ephethe uMark Shuttleworth isivele ikulungisile.

Njenge bayabika ekhasini lezindaba zokuphepha Ubuntu, isiphazamisi sithinta (ba) zonke izinhlobo ze-Ubuntu ezisakujabulela ukwesekwa kumjikelezo wazo wokuphila ojwayelekile, okuyi-Ubuntu 19.04, Ubuntu 18.04 LTS, ne-Ubuntu 16.04 LTS. Sisho "kumjikelezo wayo wempilo ojwayelekile" ngoba okwamanje kunezinguqulo ezimbili ezengeziwe ezisekelwayo, i-Ubuntu 14.04 ne-Ubuntu 12.04 esesigabeni se-ESM (Extended Security Maintenance), okusho ukuthi basathola amabala athile okuphepha.

Izimbungulu ze-Apache HTTP Server zilungiswe ngo-Agasti 29

Njengoba kushiwo, iCanonical imise amaphutha okuphepha we-Apache HTTP Server ayi-7: I-CVE-2019-0197, I-CVE-2019-10081, I-CVE-2019-10082, I-CVE-2019-10097 y I-CVE-2019-9517 ingasetshenziswa umhlaseli okude ukudala ukwenqatshwa kwensizakalo, esimweni sohlangothi lwesithathu ngisho ukuveza imininingwane ebucayi. I I-CVE-2019-10092 ingavumela umhlaseli okude ukuthi ahlasele i-cross-site scripting (XSS). Futhi i- I-CVE-2019-10098 ingasetshenziswa umhlaseli okude ukudalula imininingwane ebucayi noma ukweqa imikhawulo ethile.

Amachashazi, asevele etholakala nalokho ingasetshenziswa kusuka kusibuyekezo sesoftware njengokujwayelekile, kunjalo i-apache2 - 2.4.38-2ubuntu2.2 y i-apache2-bin - 2.4.38-2ubuntu2.2 ku-Ubuntu 19.04, i-apache2 - 2.4.29-1ubuntu4.10 y i-apache2-bin - 2.4.29-1ubuntu4.10 ku-Ubuntu 18.04 naku- i-apache2 - 2.4.18-2ubuntu3.12 y i-apache2-bin - 2.4.18-2ubuntu3.12 ku-Ubuntu 16.04.

Kepha, njengoba sesichazile, akukho okumele sikhathazeke ngakho. Iziphazamisi ezitholakala kuLinux kuvame ukuba nzima ukuxhaphaza futhi izinkampani ezinjengeCanonical ziyashesha ukuzilungisa. Ukuphela kokufanele sikwenze gcina iqembu lethu livuselelwa njalo.

Ukuba sengozini ku-Ubuntu: I-Ghostscript ne-Ceph
I-athikili ehlobene:
Ukuba sengozini kweGhostscript kungasetshenziswa ukufinyelela kumafayili wokuphikisana ku-Ubuntu

Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.