ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Vulnerability nyob rau hauv Squid npe neeg rau zaub mov uas tso cai rau koj mus hla kev txwv kev nkag

Vulnerability nyob rau hauv Squid npe neeg rau zaub mov uas tso cai rau koj mus hla kev txwv kev nkag

Qhia tawm cov ntaub ntawv hais txog qhov tsis zoo hauv lub npe server Squid, uas tau ntsiag to tshem tawm xyoo tas los hauv kev tso tawm Squid 4.8. Cov teeb meem muaj nyob rau hauv cov cai rau kev ua cov "@" thaiv thaum pib ntawm qhov URL ("user@host") thiab tso cai rau koj hla txoj cai txwv tsis pub nkag mus, tshuaj lom cov ntsiab lus ntawm lub cache, thiab ua tiav qhov chaw hla. scripting nres.

  • CVE-2019-12524 - tus neeg siv khoom, siv qhov URL tsim tshwj xeeb, tuaj yeem hla cov cai teev tseg siv url_regex cov lus qhia thiab tau txais cov ntaub ntawv tsis pub lwm tus paub txog lub npe thiab kev ua tiav tsheb (tau nkag mus rau Cache Manager interface).
  • CVE-2019-12520 - los ntawm kev tswj hwm tus neeg siv cov ntaub ntawv hauv URL, koj tuaj yeem ua tiav cov ntaub ntawv tsis tseeb rau ib nplooj ntawv tshwj xeeb hauv cache, uas, piv txwv li, tuaj yeem siv los teeb tsa kev ua tiav ntawm koj tus lej JavaScript hauv cov ntsiab lus ntawm lwm qhov chaw.

Tau qhov twg los: opennet.ru

Ntxiv ib saib