ProHoster > Π‘Π»ΠΎΠ³ > wararka internetka > Cusboonaysiinta Java SE, MySQL, VirtualBox iyo alaabada kale ee Oracle ee leh baylahda go'an

Cusboonaysiinta Java SE, MySQL, VirtualBox iyo alaabada kale ee Oracle ee leh baylahda go'an

Shirkadda Oracle la daabacay sii daynta qorshaysan ee ku saabsan wax soo saarkeeda (Critical Patch Update), oo looga dan leeyahay in meesha laga saaro dhibaatooyinka muhiimka ah iyo dayacanka. Cusbooneysii Abriil tan waa la tirtiray guud ahaan 297 baylahda.

Arrimaha Java SE 12.0.1, 11.0.3 iyo 8u212 5 arrimo amni oo go'an. Dhammaan baylahda waxaa laga faa'iidaysan karaa meel fog iyadoon la xaqiijin. Mid ka mid ah baylahda gaarka ah ee madal Windows loo xilsaaray Dhibcaha CVSS 9.0 (CVE-2019-2699), kaas oo u dhigma heerka khatarta ah ee khatarta ah oo u oggolaanaya isticmaale aan la hubin shabakada si uu u carqaladeeyo codsiyada Java SE. Laba dayacan oo ku jira nidaamka hoose ee garaafyada 2D ayaa loo qoondeeyay heerka 8.1 (CVE-2019-2697, CVE-2019-2698). Faahfaahinta weli lama shaacin.

Marka laga soo tago arrimaha Java SE, dayacanka ayaa si guud loogu soo bandhigay alaabada kale ee Oracle, oo ay ku jiraan:

  • 40 baylahda gudaha MySQL (heerka darnaanta ugu badan 7.5). Dhibaatada ugu khatarta badan
    (CVE-2019-2632) waxay saamaysaa nidaamka hoose ee plugin xaqiijinta. Arrimaha waxa lagu xallin doonaa siidaynta MySQL Community Server 8.0.16, 5.7.26 iyo 5.6.44.

  • 12 baylahda gudaha VirtualBox, kaas oo 7 ka mid ah ay leeyihiin heer halis ah (CVSS Score 8.8). Nuglaanta waxa lagu hagaajiyaa cusboonaysiinta VirtualBox 6.0.6 iyo 5.2.28 (gudaha note Xaqiiqda ah in dhibaatooyinka amniga la xaliyay lama xayeysiin ka hor inta aan la sii deyn). Faahfaahinta lama bixin, laakiin marka la eego heerka CVSS, baylahda waa la hagaajiyay. la soo bandhigay tartanka Pwn2Own 2019 oo kuu ogolaanaya inaad ku fuliso code dhinaca nidaamka martida ee jawiga nidaamka martida.

    kuu ogolaanaya inaad ka weerarto nidaamka martida ka deegaanka martida.

  • 3 baylahda on Solaris (ugu badnaan darnaanta 5.3 - arrimaha maareeyaha xirmada IPS, SunSSH, iyo adeegga maaraynta qufulka. Arrimaha la xaliyay markii la sii daayay
    Solaris 11.4 SRU8, kaas oo sidoo kale dib u bilaabay taageerada maktabadaha UCB (libucb, librpcsoc, libdbm, libtermcap, libcurses) iyo adeegga fc-fabric, noocyada xirmooyinka la cusboonaysiiyay
    ibus 1.5.19, NTP 4.2.8p12,
    Firefox 60.6.0esr,
    XIRIIR 9.11.6
    Fur SSL 1.0.2r,
    MySQL 5.6.43 & 5.7.25,
    libxml2 2.9.9,
    libxslt 1.1.33,
    Wireshark 2.6.7,
    6.1.0.20190105,
    Apache httpd 2.4.38,
    halkii 5.22.

Source: opennet.ru

Add a comment