Oracle Company yakarongwa kuburitswa kwezvigadziriso kune zvigadzirwa zvayo (Critical Patch Update), ine chinangwa chekubvisa matambudziko akakomba uye kusasimba. Mukuvandudzwa kwaApril izvi zvakabviswa zvachose .
Nyaya 5 nyaya dzekuchengetedza dzakagadziriswa. Zvese zvinokanganisa zvinogona kushandiswa kure pasina humbowo. Imwe njodzi yakanangana neWindows platform CVSS Score 9.0 (CVE-2019-2699), iyo inoenderana neyakakomba nhanho yenjodzi uye inobvumira mushandisi asina kutenderwa pamusoro penetiweki kukanganisa Java SE application. Kusagadzikana kuviri muiyo 2D mifananidzo yekugadzirisa subsystem yakapihwa nhanho 8.1 (CVE-2019-2697, CVE-2019-2698). Zvizhinji hazvisati zvaburitswa pachena.
Pamusoro pezvinhu muJava SE, kusadzivirirwa kwaitwa pachena mune zvimwe zvigadzirwa zveOracle, zvinosanganisira:
- muMySQL (yakanyanya kuomarara nhanho 7.5). Dambudziko rine ngozi zvikuru
() inokanganisa iyo yekusimbisa plugin subsystem. Nyaya dzichagadziriswa mukuburitswa . - muVirtualBox, iyo 7 ine dhigirii yakaoma yengozi (CVSS Score 8.8). Kusagadzikana kunogadziriswa mukuvandudza (mukati chokwadi chekuti matambudziko ekuchengetedza akagadziriswa haana kushambadzwa isati yaburitswa). Ruzivo haruna kupihwa, asi tichitonga nechiyero cheCVSS, kusasimba kwakagadziriswa, paPwn2Own 2019 makwikwi uye inokubvumidza kuti uite kodhi pane iyo host system side kubva kune yevaenzi system nharaunda.
kubvumira iwe kurwisa iyo host system kubva kune yevaenzi nharaunda.
- paSolaris (yakanyanya kuomarara 5.3 - matambudziko ane IPS package maneja, SunSSH uye yekukiya manejimendi sevhisi. Matambudziko akagadziriswa mukuburitswa
, iyo yakatanga zvakare rutsigiro rwemaraibhurari eUCB (libucb, librpcsoc, libdbm, libtermcap, libcurses) uye fc-fabric sevhisi, yakagadziridzwa mapakeji.
ibus 1.5.19, NTP 4.2.8p12,
Firefox 60.6.0esr,
BIND 9.11.6
OpenSSL 1.0.2r,
MySQL 5.6.43 & 5.7.25,
libxml2 2.9.9,
libxslt 1.1.33,
Wireshark 2.6.7,
nurses 6.1.0.20190105,
Apache httpd 2.4.38,
perl 5.22.
Source: opennet.ru