ProHoster > Блог > ozi ịntanetị > Ọdịmma dị na koodu VS, Grafana, GNU Emacs na Apache Fineract

Ọdịmma dị na koodu VS, Grafana, GNU Emacs na Apache Fineract

Ọtụtụ adịghị ike achọpụtara nso nso a:

  • Achọpụtala adịghị ike dị oke egwu (CVE-2022-41034) na Visual Studio Code (VS Code) nke na-enye ohere igbu koodu mgbe onye ọrụ mepere njikọ nke onye mwakpo kwadebere. Enwere ike igbu koodu ahụ na igwe VS Code ma ọ bụ na igwe ọ bụla ọzọ ejikọrọ na koodu VS site na iji njirimara mmepe Remote. Nsogbu a na-ebute ihe egwu kachasị ukwuu nye ndị ọrụ nke ụdị weebụ nke koodu VS na ndị editọ webụ dabere na ya, gụnyere GitHub Codespaces na github.dev.

    A na-akpata adịghị ike ahụ site n'ikike ịhazi "iwu:" njikọ ọrụ iji mepee windo nwere ọnụ ọnụ ma mebie iwu shei na-ezighị ezi n'ime ya, mgbe ị na-edozi akwụkwọ ahaziri ahazi na usoro Jypiter Notebook na nchịkọta akụkọ, nke ebudatara na sava weebụ na-achịkwa. site na onye na-awakpo (faịlụ mpụga nwere ndọtị ".ipynb" na-enweghị nkwenye ndị ọzọ na-emeghe na ọnọdụ "isTrusted", nke na-enye ohere nhazi nke "iwu:").

  • Achọpụtala adịghị ike na GNU Emacs ederede editọ (CVE-2022-45939), nke na-enye ohere ịhazi mmezu nke iwu mgbe ị na-emepe faịlụ na koodu, site na ngbanwe nke mkpụrụedemede pụrụ iche na aha ahaziri site na iji ngwa ọrụ ctag.
  • Achọpụtala adịghị ike (CVE-2022-31097) n'elu ikpo okwu data mepere emepe nke Grafana nke nwere ike ikwe ka emee koodu Javascript mgbe egosipụtara ọkwa site na sistemụ Alerting Grafana. Onye na-awakpo nwere ikike ndị editọ nwere ike ịkwadebe njikọ ahaziri ahazi wee nweta ikike nchịkwa nke Grafana ma ọ bụrụ na onye nchịkwa pịa njikọ a. Edobere adịghị ike ahụ na mwepụta Grafana 9.2.7, 9.3.0, 9.0.3, 8.5.9, 8.4.10 na 8.3.10.
  • Adịghị ike (CVE-2022-46146) n'ọbá akwụkwọ na-ebupụ-toolkit ejiri mepụta ndị na-ebupụ metrics maka Prometheus. Nsogbu a na-enye gị ohere ịgafe nyocha isi.
  • Nhụta (CVE-2022-44635) na ikpo okwu ọrụ ego Apache Fineract nke na-enye onye ọrụ na-akwadoghị aka nweta mkpochapụ koodu dịpụrụ adịpụ. Ihe kpatara nsogbu a bụ enweghị mgbanarị kwesịrị ekwesị nke mkpụrụedemede "..." dị n'okporo ụzọ a na-ahazi site na mpaghara maka nbudata faịlụ. Edobere adịghị ike ahụ na Apache Fineract 1.7.1 na 1.8.1 weputara.
  • Ọdịmma (CVE-2022-46366) na Apache Tapestry Java framework nke na-enye ohere ka emee koodu omenala mgbe emebere data ahaziri ahazi. Nsogbu a na-apụta naanị na ngalaba ochie nke Apache Tapestry 3.x, nke anaghị akwado ya.
  • Ihe ọghọm dị na ndị na-enye Apache Airflow na-enye Hive (CVE-2022-41131), Pinot (CVE-2022-38649), Pig (CVE-2022-40189) na Spark (CVE-2022-40954), na-eduga na mkpochapụ koodu dịpụrụ adịpụ site na ntinye ngwa ngwa. faịlụ ma ọ bụ iwu nnọchi n'ọnọdụ nke ogbugbu ọrụ na-enweghị ide ohere faịlụ DAG.

isi: opennet.ru

Tinye a comment