KwiFreeBSD Ubuthathaka obuthandathu obukuvumela ukuba wenze uhlaselo lwe-DoS, ushiye indawo yentolongo, okanye ufumane ukufikelela kwidatha ye-kernel. Iingxaki zalungiswa kuhlaziyo 12.1-RELEASE-p3 kunye ne-11.3-RELEASE-p7.
- - ngenxa yempazamo ekuphunyezweni kwe-epair virtual network interfaces, umsebenzisi one-PRIV_NET_IFCREATE okanye amalungelo engcambu ukusuka kwindawo esecaleni yejele inokubangela ukuba i-kernel iphazamise okanye iqhube ikhowudi yabo ngamalungelo e-kernel.
- -akukho kukhangela ukupheliswa komtya kunye nomlinganiswa ongenanto xa kusetyenzwa i "osrelease" ukhetho ngokusebenzisa inkqubo ye-jail_set call, ikuvumela ukuba ufumane imixholo yezakhiwo zememori ye-kernel ekufutshane xa umlawuli wendalo yejele esenza umnxeba we-jail_get, ukuba inkxaso yokuqaliswa kwentolongo enendlu. Imeko-bume yenziwe nge- children.max parameter ( Ngokungagqibekanga, ukuyilwa kwemekobume yentolongo evalelweyo akuvumelekanga).
- β ukujongwa ngendlela engeyiyo kwamalungelo xa ufikelela kumqhubi nge-ioctl ivumela umsebenzisi ongenalungelo ukuba afakele uhlaziyo lwe-firmware yezixhobo ze-NVM.
- β ukujongwa ngendlela engeyiyo kwamalungelo xa ufikelela kumqhubi nge-ioctl ivumela umsebenzisi ongenanto ukuba athumele imiyalelo kwi-firmware ye-adapter network ye-Emulex OneConnect.
- - ngokuthumela amacandelo e-TCP SYN-ACK eyilwe ngendlela ethile phezu kwe-IPv6, i-byte enye yememori ye-kernel inokuvuza phezu kwenethiwekhi (intsimi yeKlasi yeTrafikhi ayiqaliswanga kwaye iqulethe idatha eshiyekileyo).
- kwixesha le-ntpd ungqamaniso lwedaemon inokusetyenziselwa ukubangela ukwala kwenkonzo (ibangela inkqubo ye-ntpd ukuba ingqubeke).
umthombo: opennet.ru