Pa FreeBSD Zowopsa zisanu ndi chimodzi zomwe zitha kuloleza kuwukira kwa DoS, kuphulika kwa ndende, kapena kernel data idadziwika. Nkhanizi zidakonzedwa muzosintha za 12.1-RELEASE-p3 ndi 11.3-RELEASE-p7.
- - Chifukwa cha zolakwika pakukhazikitsa ma netiweki ophatikizika, wogwiritsa ntchito PRIV_NET_IFCREATE ufulu kapena mizu kuchokera kundende yakutali angayambitse kernel kusweka kapena kutulutsa code yawo ndi mwayi wa kernel.
- - kusakhalapo kwa zingwe zomwe zathetsedwa mukamakonza njira ya "osrelease" kudzera pa jail_set system call imalola kuti zomwe zili m'mbali mwa kernel memory zibwezedwe pomwe woyang'anira ndende adayitanitsa jail_get, ngati thandizo lokhazikitsa ndende zomwe zili m'ndende zimathandizidwa kudzera pa ana.
- - Cholakwika mwayi cheke pamene kupeza dalaivala Amalola wogwiritsa ntchito wopanda mwayi kukhazikitsa zosintha za firmware pazida za NVM kudzera pa ioctl.
- - Cholakwika mwayi cheke pamene kupeza dalaivala kudzera pa ioctl imalola wogwiritsa ntchito wopanda mwayi kutumiza malamulo ku firmware ya Emulex OneConnect network adapter.
- - potumiza magawo opangidwa mwapadera a TCP SYN-ACK pa IPv6, ndizotheka kutsitsa kukumbukira kwa kernel pamaneti (gawo la Traffic Class silinayambike ndipo lili ndi zotsalira).
- mu daemon yolunzanitsa nthawi ya ntpd, zofooka zitha kugwiritsidwa ntchito kukana ntchito (kupangitsa kuti ntpd iwonongeke).
Source: opennet.ru
