ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Kev hloov kho tshiab rau Java SE, MySQL, VirtualBox thiab lwm yam khoom siv Oracle nrog qhov tsis zoo

Kev hloov kho tshiab rau Java SE, MySQL, VirtualBox thiab lwm yam khoom siv Oracle nrog qhov tsis zoo

Oracle tuam txhab luam tawm npaj kev tso tawm tshiab rau nws cov khoom (Critical Patch Update), txhawm rau tshem tawm cov teeb meem tseem ceeb thiab qhov tsis zoo. Hauv lub Plaub Hlis hloov tshiab no tau raug tshem tawm tag nrho 297 vulnerabilities.

Hauv cov teeb meem Java SE 12.0.1, 11.0.3 thiab 8u212 5 teeb meem kev ruaj ntseg kho. Txhua qhov kev tsis txaus ntseeg tuaj yeem raug siv los ntawm kev deb yam tsis muaj kev lees paub. Ib qho kev tsis txaus ntseeg tshwj xeeb rau Windows platform muab CVSS Score 9.0 (CVE-2019-2699), uas sib haum mus rau theem tseem ceeb ntawm kev txaus ntshai thiab tso cai rau tus neeg siv tsis tau lees paub hauv lub network kom cuam tshuam Java SE daim ntawv thov. Ob qhov tsis zoo hauv 2D cov duab ua haujlwm subsystem tau muab rau qib 8.1 (CVE-2019-2697, CVE-2019-2698). Cov ntsiab lus tseem tsis tau nthuav tawm.

Ntxiv rau cov teeb meem hauv Java SE, qhov tsis zoo tau raug nthuav tawm hauv lwm cov khoom lag luam Oracle, suav nrog:

  • 40 vulnerabilities hauv MySQL (qhov hnyav tshaj plaws 7.5). Qhov teeb meem txaus ntshai tshaj plaws
    (CVE-2019-2632) cuam tshuam rau authentication plugin subsystem. Cov teeb meem yuav raug kho hauv kev tshaj tawm MySQL Community Server 8.0.16, 5.7.26 thiab 5.6.44.

  • 12 vulnerabilities hauv VirtualBox, ntawm 7 muaj qhov tseem ceeb ntawm kev txaus ntshai (CVSS Score 8.8). Vulnerabilities raug kho nyob rau hauv kev hloov tshiab VirtualBox 6.0.6 thiab 5.2.28 (hauv ceeb toom qhov tseeb tias cov teeb meem kev ruaj ntseg raug daws tsis tau tshaj tawm ua ntej tso tawm). Cov ntsiab lus tsis tau muab, tab sis txiav txim los ntawm qib ntawm CVSS, qhov tsis zoo tau raug kho, ua qauv qhia ntawm Pwn2Own 2019 kev sib tw thiab tso cai rau koj ua tiav cov cai ntawm tus tswv tsev sab hauv los ntawm cov qhua system ib puag ncig.

    tso cai rau koj mus tua lub party system los ntawm cov qhua ib puag ncig.

  • 3 vulnerabilities ntawm Solaris (qhov mob hnyav tshaj plaws 5.3 - teeb meem nrog IPS pob tus thawj tswj hwm, SunSSH, thiab kev pabcuam xauv xauv. Cov teeb meem daws teeb meem hauv kev tso tawm
    Solaris 11.4 SRU 8, uas tseem rov pib txhawb nqa rau UCB cov tsev qiv ntawv (libucb, librpcsoc, libdbm, libtermcap, libcurses) thiab cov kev pabcuam fc-fab, hloov tshiab pob versions
    ibus 1.5.19, NTP 4.2.8p12,
    Firefox 60.6.0esr,
    PAB 9.11.6
    Qhib SSL 1.0.2r,
    MySQL 5.6.43 & 5.7.25,
    libxml2 2.9.9,
    libxslt 1.1.33,
    Wireshark 2.6.7,
    Hnub tim 6.1.0.20190105,
    Apache httpd 2.4.38,
    pem 5.22.

Tau qhov twg los: opennet.ru

Ntxiv ib saib