Kampani ya Oracle kumasulidwa kosinthidwa kwazinthu zawo (Critical Patch Update), pofuna kuthetsa mavuto aakulu ndi ziwopsezo. Mu Januwale pomwe, ndalamazo zidachotsedwa .
Mu nkhani kuthetsedwa . Zowopsa zonse zitha kugwiritsidwa ntchito kutali popanda kutsimikizika. Mulingo wovuta kwambiri ndi 8.1, womwe umaperekedwa ku nkhani ya serialization (CVE-2020-2604) yomwe imalola kuti mapulogalamu a Java SE asokonezedwe popereka deta yopangidwa mwapadera. Zofooka zitatu zili ndi mulingo wovuta wa 7.5. Nkhanizi zilipo mu JavaFX ndipo zimayamba chifukwa cha kusatetezeka kwa SQLite ndi libxslt.
Kuphatikiza pazovuta za Java SE, zofooka zawonetsedwa poyera pazinthu zina za Oracle, kuphatikiza:
- mu seva ya MySQL ndi
Zowopsa za 3 pakukhazikitsa kasitomala wa MySQL (C API). Mulingo wapamwamba kwambiri wa 6.5 umaperekedwa kumavuto atatu mu MySQL parser ndi optimizer.
Nkhani zokhazikika muzotulutsa . - mu VirtualBox, omwe 6 ali ndi chiopsezo chachikulu (CVSS Score 8.2 ndi 7.5). Zowopsa zidzasinthidwa pazosintha zomwe zikuyembekezeredwa lero.
- ku Solaris. Maximum Severity 8.8 ndi vuto lomwe limagwiritsidwa ntchito kwanuko mu Common Desktop Environment. Pamavuto omwe ali ndi kuchuluka kwamphamvu pamwamba pa 7, zofooka zam'deralo mu Consolidation Infrastructure ndi mafayilo amafayilo zitha kudziwikanso. Nkhani zakonzedwa muzosintha zadzulo .
Source: opennet.ru