Mune ftpd server inopihwa neFreeBSD Kusagadzikana kwakanyanya (CVE-2020-7468), ichibvumira vashandisi kuganhurirwa kune yavo dhairekitori repamba vachishandisa iyo ftpchroot sarudzo yekuwana yakazara midzi yekuwana kune sisitimu.
Dambudziko rinokonzerwa nekubatanidzwa kwebug mukuitwa kwemushandisi wekuzviparadzanisa nevamwe uchishandisa chroot kufona (kana maitiro ekuchinja uid kana kuita chroot uye chdir akatadza, kukanganisa kusiri kuuraya kunokandwa kusingapedze chikamu) uye nekupa akatendeseka FTP mushandisi kodzero dzakakwana dzekupfuura iyo mudzi nzira yekudzora mufaira system. Kusagadzikana hakuitike kana uchiwana sevha yeFTP nenzira isingazivikanwe kana mushandisi akanyatsopinda pasina ftpchroot. Nyaya inogadziriswa mukuvandudza 12.1-RELEASE-p10, 11.4-RELEASE-p4 uye 11.3-RELEASE-p14.
Pamusoro pezvo, isu tinogona kucherechedza kubviswa kwezvimwe zvipingamupinyi zvitatu mu12.1-RELEASE-p10, 11.4-RELEASE-p4 uye 11.3-RELEASE-p14:
- -kusagadzikana muBhyve hypervisor, iyo inobvumira nharaunda yevaenzi kunyora ruzivo kunzvimbo yekurangarira yenzvimbo yekutambira uye kuwana mukana wakazara kune iyo host system. Dambudziko rinokonzerwa nekushaikwa kwezvirambidzo zvekupinda kune processor mirairo inoshanda nemakero ekugamuchira emuviri, uye inongoonekwa pane masisitimu ane AMD CPUs.
- -kusagadzikana muBhyve hypervisor iyo inobvumira anorwisa ane midzi kodzero mukati menzvimbo dzakasarudzika uchishandisa Bhyve kuita kodhi padanho rekernel. Dambudziko rinokonzerwa nekushaikwa kwezvirambidzo zvakakodzera zvekupinda kuVMCS (Virtual Machine Control Structure) zvimiro pane masisitimu ane Intel CPUs uye VMCB (Virtual.
Machine Control Block) pane masisitimu ane AMD CPUs. - -kusagadzikana mumutyairi weure (USB Ethernet Realtek RTL8152 uye RTL8153), iyo inobvumira spoofing mapaketi kubva kune mamwe mauto kana kutsiva mapaketi mune mamwe maVLAN nekutumira mafuremu makuru (anopfuura 2048).
Source: opennet.ru