Abaphuhlisi beMozilla bakhuphe iinguqulelo ezintsha zeFirefox 74.0.1 kunye neFirefox ESR 68.6.1 yezikhangeli zewebhu. Abasebenzisi bayacetyiswa ukuba bahlaziye iiphequluli zabo, njengoko iinguqulelo ezibonelelweyo zilungisa ubuthathaka obumbini beentsuku zero ezisetyenziswa ngabahlaseli ekusebenzeni.
Sithetha malunga nokuba buthathaka kwe-CVE-2020-6819 kunye ne-CVE-2020-6820 ehambelana nendlela iFirefox elawula ngayo indawo yayo yememori. Ezi zinto zibizwa ngokuba semngciphekweni wokusebenzisa emva-kwasimahla kwaye zivumela abahlaseli ukuba babeke ikhowudi engafanelekanga kwimemori yeFirefox ukuze iphunyezwe kumxholo wesikhangeli. Ubuthathaka obunjalo bunokusetyenziswa ukwenza ukude ikhowudi kwizixhobo zexhoba.
Iinkcukacha zohlaselo lwangempela kusetyenziswa ubuthathaka obukhankanyiweyo azichazwanga, nto leyo iyinto eqhelekileyo phakathi kwabathengisi besoftware kunye nabaphandi bokhuseleko lolwazi. Oku kungenxa yokuba zonke zihlala zijolise ekupheliseni ngokukhawuleza iingxaki ezichongiweyo kunye nokuhambisa izilungiso kubasebenzisi, kwaye emva koko uphando oluthe kratya lohlaselo lwenziwa.
Ngokwedatha ekhoyo, iMozilla iya kuphanda uhlaselo isebenzisa obu buthathaka kunye nenkampani yokhuseleko yolwazi iJMP Security kunye nomphandi uFrancisco Alonso, owafumanisa kuqala ingxaki. Umphandi ucebisa ukuba ubuthathaka obumiselweyo kuhlaziyo lweFirefox lwamva nje lunokuchaphazela ezinye iiphequluli, nangona kungekho matyala aziwayo apho iimpazamo zixhatshazwe ngabaduni kwiziphequluli zewebhu ezahlukeneyo.
umthombo: 3dnews.ru