FreeBSD hais txog peb qhov tsis zoo uas tuaj yeem tso cai rau kev ua txhaum cai thaum siv libfetch, IPsec pob ntawv rov qab, lossis nkag mus rau cov ntaub ntawv kernel. Cov teeb meem raug kho hauv qhov hloov tshiab 12.1-RELEASE-p2, 12.0-RELEASE-p13 thiab 11.3-RELEASE-p6.
- - qhov tsis txaus nyob hauv lub tsev qiv ntawv libfetch, siv los thauj cov ntaub ntawv hauv cov lus txib fetch, tus thawj tswj pob pkg thiab lwm yam khoom siv. Qhov tsis zoo tuaj yeem ua rau kev ua tiav code thaum ua qhov tshwj xeeb crafted URL. Qhov kev tawm tsam tuaj yeem ua tiav thaum nkag mus rau qhov chaw tswj hwm los ntawm tus neeg tawm tsam, uas, los ntawm HTTP redirect, muaj peev xwm pib ua qhov tsis zoo URL;
- - qhov tsis zoo nyob rau hauv lub mechanism rau tsim cov txheej txheem tseem ceeb dumps. Vim yog qhov ua yuam kev, txog li 20 bytes ntawm cov ntaub ntawv los ntawm cov pawg pawg tau sau tseg rau hauv cov ntaub ntawv pov tseg, uas tuaj yeem muaj cov ntaub ntawv tsis pub lwm tus paub ua tiav los ntawm cov kernel. Raws li kev ua haujlwm rau kev tiv thaiv, koj tuaj yeem lov tes taw tiam ntawm cov ntaub ntawv tseem ceeb ntawm sysctl kern.coredump=0;
- - kab laum nyob rau hauv cov cai rau thaiv cov ntaub ntawv rov xa hauv IPsec ua rau nws tuaj yeem rov xa cov pob ntawv uas tau ntes yav dhau los. Nyob ntawm cov txheej txheem qib siab uas kis tau los ntawm IPsec, qhov teeb meem pom tau tso cai, piv txwv li, yav dhau los cov lus txib xa mus rau qhov tsis zoo.
Tau qhov twg los: opennet.ru