Madivelopa a FreeBSD adaganiza munthambi yatsopano ya FreeBSD 13, yomwe ikuyembekezeka kutulutsidwa pa Epulo 13, kuti ipatse doko la zomangamanga za ARM64 (AArch64) malo a nsanja yoyamba (Tier 1). Poyamba, chithandizo chofananacho chinaperekedwa kwa machitidwe a 64-bit x86 (mpaka posachedwapa, zomangamanga za i386 zinali zomangamanga, koma mu Januwale zinasamutsidwa ku gawo lachiwiri la chithandizo).
Gawo loyamba la chithandizo limaphatikizapo kupanga makonzedwe amisonkhano, zosintha zamabina ndi mapepala okonzeka, komanso kupereka zitsimikizo zothetsera mavuto enieni ndi kusunga ABI yosasinthika kwa malo ogwiritsira ntchito ndi kernel (kupatulapo ma subsystems). Gawo loyamba limagwera pansi pothandizidwa ndi magulu omwe ali ndi udindo wochotsa zofooka, kukonzekera zotulutsa ndi kusunga madoko.
Kuphatikiza apo, titha kuzindikira kuchotsedwa kwa ziwopsezo zitatu mu FreeBSD:
- CVE-2021-29626 Njira yopanda mwayi yakumaloko imatha kuwerenga zomwe zili mkati mwa kukumbukira kwa kernel kapena njira zina kudzera pakusintha mapu a kukumbukira. Chiwopsezochi ndi chifukwa cha cholakwika mumndandanda wazokumbukira zomwe zimalola kuti kukumbukira kugawidwe pakati pa njira, zomwe zingapangitse kuti kukumbukira kupitirire kumangirizidwa kunjira pambuyo poti tsamba logwirizana limasulidwa.
- CVE-2021-29627 Wogwiritsa ntchito wamba wopanda mwayi amatha kukulitsa mwayi wawo pamakina kapena kuwerenga zomwe zili mkati mwa kernel memory. Vutoli limayamba chifukwa chofikira kukumbukira pambuyo pomasulidwa (kugwiritsa ntchito-mufulu) pakukhazikitsa njira yolandirira fyuluta.
- CVE-2020-25584 - Kuthekera kodutsa njira yodzipatula ya Jail. Wogwiritsa ntchito mkati mwa sandbox ndi chilolezo choyika magawo (allow.mount) akhoza kusintha chikwatu cha mizu kukhala malo kunja kwa Jail hierarchy ndikupeza kuwerenga ndi kulemba kwathunthu pamafayilo onse adongosolo.
Source: opennet.ru