I-FreeBSD ijongana nobuthathaka obuthathu obunokuvumela ukuphunyezwa kwekhowudi xa usebenzisa i-libfetch, i-IPsec ipakethe yokuhanjiswa kwakhona, okanye ukufikelela kwidatha ye-kernel. Iingxaki zilungiswe kuhlaziyo 12.1-RELEASE-p2, 12.0-RELEASE-p13 kunye ne-11.3-RELEASE-p6.
- -Isikhuseli siphuphuma kwilayibrari ye-libfetch, esetyenziselwa ukulayisha iifayile kumyalelo wokulanda, umphathi wepakethe yepkg kunye nezinye izinto eziluncedo. Ukuba sesichengeni kunokukhokelela ekuphunyezweni kwekhowudi xa kusetyenzwa i-URL eyenziwe ngokukodwa. Uhlaselo lunokwenziwa xa ufikelela kwindawo elawulwa ngumhlaseli, leyo, ngokusebenzisa i-HTTP redirect, ikwazi ukuqalisa ukusebenza kwe-URL engalunganga;
- - ukuba sesichengeni kwindlela yokuvelisa inkunkuma yenkqubo engundoqo. Ngenxa yempazamo, ukuya kuthi ga kwi-20 bytes yedatha esuka kwi-kernel stack yarekhodwa kwiindawo zokulahla ezingundoqo, ezinokuthi zibe nolwazi oluyimfihlo olusetyenzwe yi-kernel. Njengomsebenzi wokhuseleko, unokukhubaza ukuveliswa kweefayile ezingundoqo nge sysctl kern.coredump=0;
- - i-bug kwikhowudi yokuthintela ukuthumela kwakhona idatha kwi-IPsec yenza ukuba kube lula ukuthumela iipakethi ezibanjwe ngaphambili. Ngokuxhomekeke kwiprotocol yezinga eliphezulu eligqithisiweyo phezu kwe-IPsec, ingxaki echongiweyo ivumela, umzekelo, imiyalelo edluliselwe ngaphambili ukuba ikhutshwe.
umthombo: opennet.ru