KwiFreeBSD
-
I-CVE-2020-7452 - ngenxa yempazamo ekuphunyezweni kwe-epair virtual network interfaces, umsebenzisi one-PRIV_NET_IFCREATE okanye amalungelo engcambu ukusuka kwindawo esecaleni yejele inokubangela ukuba i-kernel iphazamise okanye iqhube ikhowudi yabo ngamalungelo e-kernel. -
I-CVE-2020-7453 -akukho kukhangela ukupheliswa komtya kunye nomlinganiswa ongenanto xa kusetyenzwa i "osrelease" ukhetho ngokusebenzisa inkqubo ye-jail_set call, ikuvumela ukuba ufumane imixholo yezakhiwo zememori ye-kernel ekufutshane xa umlawuli wendalo yejele esenza umnxeba we-jail_get, ukuba inkxaso yokuqaliswa kwentolongo enendlu. Imeko-bume yenziwe nge- children.max parameter ( Ngokungagqibekanga, ukuyilwa kwemekobume yentolongo evalelweyo akuvumelekanga). -
I-CVE-2019-15877 β ukujongwa ngendlela engeyiyo kwamalungelo xa ufikelela kumqhubiixl nge-ioctl ivumela umsebenzisi ongenalungelo ukuba afakele uhlaziyo lwe-firmware yezixhobo ze-NVM. -
I-CVE-2019-15876 β ukujongwa ngendlela engeyiyo kwamalungelo xa ufikelela kumqhubioce nge-ioctl ivumela umsebenzisi ongenanto ukuba athumele imiyalelo kwi-firmware ye-adapter network ye-Emulex OneConnect. -
I-CVE-2020-7451 - ngokuthumela amacandelo e-TCP SYN-ACK eyilwe ngendlela ethile phezu kwe-IPv6, i-byte enye yememori ye-kernel inokuvuza phezu kwenethiwekhi (intsimi yeKlasi yeTrafikhi ayiqaliswanga kwaye iqulethe idatha eshiyekileyo). -
Iimpazamo ezintathu kwixesha le-ntpd ungqamaniso lwedaemon inokusetyenziselwa ukubangela ukwala kwenkonzo (ibangela inkqubo ye-ntpd ukuba ingqubeke).
umthombo: opennet.ru