Kwi-ipfw ipakethe yokucoca ubuthathaka obubini kwiinketho ze-TCP zokwahlulahlula ikhowudi, ebangelwa ukuqinisekiswa kwedatha engalunganga kwiipakethi zenethiwekhi ezicwangcisiweyo. Ubuthathaka bokuqala (i-CVE-2019-5614) xa kusetyenzwa iipakethi ze-TCP ngendlela ethile kunokukhokelela ekufikeleleni kwimemori ngaphandle kwe-buffer eyabiwe, kwaye okwesibini (i-CVE-2019-15874) inokukhokelela ekufikeleleni kwiindawo zememori esele zikhululiwe. sebenzisa emva kokuba simahla).
Uhlalutyo lokufaneleka kwemiba echongiweyo yokuxhatshazwa okukwazi ukubangela ukuphunyezwa kwekhowudi yomhlaseli akwenziwanga, kodwa kunokwenzeka ukuba ubuthathaka abunakuphela ukubangela ukuphahlazeka kwe-kernel. Iingxaki zalungiswa kwi-FreeBSD 11.3-RELEASE-p8 kunye nohlaziyo lwe-12.1-RELEASE-p4 (ulungiso lwenziwa kumasebe azinzileyo emva kukaDisemba kulo nyaka uphelileyo, kodwa inyaniso yokuba ezi zilungiso zihambelana nokuphelisa ubuthathaka yaziwa ngoku kuphela) .
umthombo: opennet.ru