Ho seva sa ftpd se fanoang ka FreeBSD ts'oaetso e matla (CVE-2020-7468), e lumellang basebelisi ba lekanyelitsoeng bukeng ea bona ea lapeng ba sebelisa khetho ea ftpchroot ho fumana phihlello e felletseng ea sistimi.
Bothata bo bakoa ke motsoako oa phoso ts'ebetsong ea mochine oa ho itšehla thajana o sebelisa mohala oa chroot (haeba ts'ebetso ea ho fetola uid kapa ho etsa chroot le chdir e hloleha, ho etsoa phoso e sa bolaeang e sa feliseng seboka) le ho fa mosebelisi ea netefalitsoeng oa FTP litokelo tse lekaneng tsa ho tlola thibelo ea tsela ea metso tsamaisong ea faele. Kotsi ha e etsahale ha o fihlella seva sa FTP ka mokhoa o sa tsejoeng kapa ha mosebelisi a kene ka botlalo ntle le ftpchroot. Taba ena e rarolloa ka lintlafatso 12.1-RELEASE-p10, 11.4-RELEASE-p4 le 11.3-RELEASE-p14.
Ho feta moo, re ka ela hloko ho felisoa ha likotsi tse ling tse tharo ho 12.1-RELEASE-p10, 11.4-RELEASE-p4 le 11.3-RELEASE-p14:
- - ho ba kotsing ho Bhyve hypervisor, e lumellang tikoloho ea baeti ho ngola tlhahisoleseling sebakeng sa mohopolo oa sebaka sa moamoheli le ho fumana phihlello e felletseng ho sistimi e amohelang baeti. Bothata bo bakoa ke khaello ea lithibelo tsa phihlello ho litaelo tsa processor tse sebetsang le liaterese tsa moamoheli oa 'mele, mme li hlaha feela lits'ebetsong tse nang le li-CPU tsa AMD.
- - ho ba kotsing ho Bhyve hypervisor e lumellang mohlaseli ea nang le litokelo tsa metso ka har'a tikoloho e ikhethileng e sebelisang Bhyve ho sebelisa khoutu boemong ba kernel. Bothata bo bakoa ke khaello ea lithibelo tse nepahetseng tsa phihlello ho meaho ea VMCS (Virtual Machine Control Structure) ho litsamaiso tse nang le Intel CPUs le VMCB (Virtual.
Machine Control Block) ho litsamaiso tse nang le li-CPU tsa AMD. - - ho ba kotsing ho mokhanni oa ure (USB Ethernet Realtek RTL8152 le RTL8153), e lumellang ho senya lipakete ho tsoa ho mabotho a mang kapa ho kenya lipakete ho li-VLAN tse ling ka ho romela liforeimi tse kholo (ho feta 2048).
Source: opennet.ru