Kampani ya Oracle kutulutsidwa kokonzekera zosintha pazogulitsa zake (Critical Patch Update), cholinga chake ndikuchotsa zovuta ndi zovuta. Mu zosintha za Epulo izi zidathetsedwa kwathunthu .
Mu nkhani 5 nkhani zachitetezo zidakhazikika. Zowopsa zonse zitha kugwiritsidwa ntchito kutali popanda kutsimikizika. Chiwopsezo chimodzi chokhazikika pa nsanja ya Windows CVSS Score 9.0 (CVE-2019-2699), yomwe imagwirizana ndi mulingo wowopsa ndipo imalola wogwiritsa ntchito wosatsimikizika pamaneti kuti asokoneze ntchito za Java SE. Ziwopsezo ziwiri mu 2D graphics processing subsystem yapatsidwa mulingo 8.1 (CVE-2019-2697, CVE-2019-2698). Zambiri sizinaululidwebe.
Kuphatikiza pazovuta za Java SE, zofooka zawonetsedwa poyera pazinthu zina za Oracle, kuphatikiza:
- mu MySQL (maximum severity level 7.5). Vuto loopsa kwambiri
() imakhudza kutsimikizika kwa pulogalamu yowonjezera. Nkhani zidzakonzedwa muzotulutsa . - mu VirtualBox, pomwe 7 ali ndi digiri yowopsa (CVSS Score 8.8). Zowopsa zimakhazikika pazosintha (v mfundo yakuti mavuto achitetezo adathetsedwa sanalengezedwe asanatulutsidwe). Tsatanetsatane sanaperekedwe, koma kutengera mulingo wa CVSS, zofooka zakhazikitsidwa, pa mpikisano wa Pwn2Own 2019 ndikukulolani kuti mupereke kachidindo kumbali ya dongosolo la alendo kuchokera kumalo osungira alendo.
kukulolani kuti muwukire dongosolo la alendo kuchokera kumalo a alendo.
- pa Solaris (kukhwima kwambiri 5.3 - nkhani ndi IPS package manager, SunSSH, ndi ntchito yoyang'anira loko. Nkhani zathetsedwa potulutsidwa
, yomwe idayambiranso kuthandizira malaibulale a UCB (libucb, librpcsoc, libdbm, libtermcap, libcurses) ndi ntchito ya fc-fabric, mitundu yosinthidwa ya phukusi.
ibus 1.5.19, NTP 4.2.8p12,
Firefox 60.6.0esr,
AMANGO 9.11.6
OpenSSL 1.0.2r,
MySQL 5.6.43 & 5.7.25,
libxml2 2.9.9,
libxslt 1.1.33,
Wireshark 2.6.7,
anatemberera 6.1.0.20190105,
Apache httpd 2.4.38,
gawo 5.22.
Source: opennet.ru