ProHoster > Blog > internet nhau > Zvigadziriso zveJava SE, MySQL, VirtualBox uye zvimwe zvigadzirwa zveOracle zvine kusasimba kwakagadziriswa

Zvigadziriso zveJava SE, MySQL, VirtualBox uye zvimwe zvigadzirwa zveOracle zvine kusasimba kwakagadziriswa

Oracle Company yakabudiswa yakarongwa kuburitswa kwezvigadziriso kune zvigadzirwa zvayo (Critical Patch Update), ine chinangwa chekubvisa matambudziko akakomba uye kusasimba. Mukuvandudzwa kwaChikunguru, huwandu hwe 319 kushaya simba.

Nyaya Java SE 12.0.2, 11.0.4 uye 8u221 10 nyaya dzekuchengetedza dzakagadziriswa. 9 kusasimba kunogona kushandiswa kure pasina humbowo. Iyo yepamusoro yakapihwa yekuomarara nhanho ndeye 6.8 (kusagadzikana mu libpng). Hapana nyaya dzakakwirira kana dzakakomba dzakaonekwa dzinogona kubvumira mushandisi asina kutenderwa pamusoro petiweki kukanganisa Java SE application.

Pamusoro pezvinhu muJava SE, kusadzivirirwa kwaitwa pachena mune zvimwe zvigadzirwa zveOracle, zvinosanganisira:

  • 43 kusasimba muMySQL (yakanyanya kuomarara nhanho 9.8, zvichiratidza dambudziko rakakura). Dambudziko rine ngozi zvikuru
    (CVE-2019-3822) yakabatana ne buffer mafashama muNTLM musoro parsing kodhi muraibhurari ye libcurl, iyo inogona kushandiswa kurwisa kure sevha yeMySQL nemushandisi asina kutenderwa. Anenge mamwe matambudziko ese anongoonekwa chete kana paine chokwadi chekuwana kuDBMS. Iyo chete inosarudzika ndeyekusagadzikana muShell: Admin / InnoDB Cluster, iyo inopihwa hutsinye hwe7.5. Nyaya dzichagadziriswa mukuburitswa MySQL Community Server 8.0.17, 5.7.27 uye 5.6.45.

  • 14 kushaya simba muVirtualBox, iyo 3 ine njodzi zvakanyanya (CVSS Score 8.2 uye 8.8). Kusagadzikana kunogadziriswa mukuvandudza VirtualBox 6.0.10 uye 5.2.32 (in note chokwadi chekuti matambudziko ekuchengetedza akagadziriswa haana kushambadzwa isati yaburitswa). Tsanangudzo hadzina kupihwa, asi, tichitarisa nedanho reCVSS, kusasimba kunobvumira kodhi kuti iitwe padivi reiyo host system kubva kune yevaenzi system nharaunda yakabviswa;
  • 10 kushaya simba muSolaris (yakanyanya kuomarara nhanho 9.1 -
    IPv6-inoenderana nenjodzi mu kernel (CVE-2019-5597) ichibvumira kure kure (ruzivo haruna kupihwa). Kusagadzikana kuviri zvakare kune yakaomesesa nhanho ye8.8 - zvinhu zvinobatika munharaunda muCommon Desktop Environment uye vatengi zvinoshandiswa zveLDAP. Matambudziko ane hutsinye hwepamusoro kupfuura 7 zvakare dzinosanganisira kure kure kushandiswa kwekusagadzikana muICMPv6 neNFS vanobata muSolaris kernel, uye matambudziko emunharaunda mufaira system neGnuplot.

Source: opennet.ru

Voeg