Vagadziri veMozilla vakaburitsa shanduro itsva dzeFirefox 74.0.1 uye Firefox ESR 68.6.1 web browser. Vashandisi vanorayirwa kuti vagadzirise mabhurawuza avo, sezvo mavhezheni akapihwa anogadzirisa maviri zero-zuva rekusagadzikana anoshandiswa nevanobira mukuita.
Tiri kutaura nezvekusagadzikana kweCVE-2020-6819 uye CVE-2020-6820 ine chekuita nenzira iyo Firefox inogadzirisa nzvimbo yayo yekurangarira. Izvi zvinodaidzwa kuti kushandiswa-mushure-kwemahara kusagadzikana uye kubvumira matsotsi kuti aise anopokana kodhi muFirefox memory kuti iitwe mumamiriro ebrowser. Kusagadzikana kwakadaro kunogona kushandiswa kuita kure kure kodhi pamidziyo yeabatwa.
Tsanangudzo yekurwiswa chaiko uchishandisa vulnerabilities yakataurwa haina kuburitswa, inova tsika yakajairika pakati pevatengesi vesoftware uye vaongorori vekuchengetedza ruzivo. Izvi zvinokonzerwa nekuti vese vanowanzo tarisa nekukurumidza kubvisa matambudziko akaonekwa uye kuendesa zvigadziriso kune vashandisi, uye chete mushure meizvozvo kuongororwa kwakadzama kwekurwiswa kunoitwa.
Zvinoenderana nedata riripo, Mozilla ichaongorora kurwiswa ichishandisa kusagadzikana uku pamwe nekambani yekuchengetedza ruzivo JMP Security uye muongorori Francisco Alonso, akatanga kuwana dambudziko. Muongorori anoratidza kuti kusadzivirirwa kwakagadziriswa mune yazvino Firefox update kunogona kukanganisa mamwe mabhurawuza, kunyangwe pasina nyaya dzinozivikanwa apo zvikanganiso zvakashandiswa nevabiki mumabhurawuza akasiyana.
Source: 3dnews.ru