I-ProHoster > Π‘Π»ΠΎΠ³ > izindaba ze-inthanethi > Buyekeza i-Java SE, i-MySQL, i-VirtualBox neminye imikhiqizo ye-Oracle enobuthakathaka isusiwe

Buyekeza i-Java SE, i-MySQL, i-VirtualBox neminye imikhiqizo ye-Oracle enobuthakathaka isusiwe

Inkampani ye-Oracle eshicilelwe ukukhishwa okuhleliwe kwezibuyekezo emikhiqizweni yayo (I-Critical Patch Update), okuhloswe ngayo ukuqeda izinkinga ezibucayi kanye nokuba sengozini. Ekubuyekezweni kuka-April lokhu kwaqedwa ngokuphelele 297 ubuthakathaka.

Ezindabeni I-Java SE 12.0.1, 11.0.3 kanye ne-8u212 5 izinkinga zokuphepha ezilungisiwe. Bonke ubungozi bungasetshenziswa ukude ngaphandle kokuqinisekisa. Ukuba sengozini okukodwa okuqondene nengxenyekazi yeWindows eyabelwe I-CVSS Score 9.0 (CVE-2019-2699), ehambisana nezinga elibucayi lengozi futhi ivumela umsebenzisi ongagunyaziwe ngenethiwekhi ukuthi afake engozini izinhlelo zokusebenza ze-Java SE. Ubungozi obubili kusistimu engaphansi yokucubungula izithombe ze-2D bunikezwe ileveli 8.1 (CVE-2019-2697, CVE-2019-2698). Imininingwane ayikadalulwa.

Ngokungeziwe ezinkingeni eziku-Java SE, ubungozi buye badalulwa kweminye imikhiqizo ye-Oracle, okuhlanganisa:

  • 40 ubuthakathaka ku-MySQL (izinga eliphezulu lokuqina 7.5). Inkinga eyingozi kakhulu
    (I-CVE-2019-2632) ithinta i-plugin subsystem yokuqinisekisa. Izinkinga zizolungiswa ekukhishweni I-MySQL Community Server 8.0.16, 5.7.26 kanye ne-5.6.44.

  • 12 ubuthakathaka ku-VirtualBox, lapho i-7 inezinga elibucayi lengozi (CVSS Score 8.8). Ubungozi bulungisiwe kuzibuyekezo I-VirtualBox 6.0.6 kanye ne-5.2.28 (v inothi iqiniso lokuthi izinkinga zokuphepha zaxazululwa ayizange ikhangiswe ngaphambi kokukhululwa). Imininingwane ayinikeziwe, kodwa uma kubhekwa izinga le-CVSS, ubungozi bulungisiwe, kubonisiwe emqhudelwaneni we-Pwn2Own 2019 futhi ikuvumela ukuthi ukhiphe ikhodi kuhlangothi lwesistimu yomsingathi endaweni yesistimu yesivakashi.

    ikuvumela ukuthi uhlasele isistimu yokusingatha usuka endaweni yesivakashi.

  • 3 ubuthakathaka ku-Solaris (ubukhulu obukhulu 5.3 - izinkinga zomphathi wephakheji ye-IPS, i-SunSSH, nesevisi yokuphatha ukukhiya. Izinkinga zixazululwe ekukhululweni
    I-Solaris 11.4 SRU8, ephinde yaqala kabusha ukusekelwa kwemitapo yolwazi ye-UCB (libucb, librpcsoc, libdbm, libtermcap, libcurses) kanye nesevisi ye-fc-fabric, izinguqulo zamaphakheji ezibuyekeziwe
    ibus 1.5.19, NTP 4.2.8p12,
    IFirefox 60.6.0esr,
    BANDELA 9.11.6
    I-OpenSSL 1.0.2r,
    I-MySQL 5.6.43 & 5.7.25,
    libxml2 2.9.9,
    i-libxslt 1.1.33,
    I-Wireshark 2.6.7,
    ncurses 6.1.0.20190105,
    I-Apache httpd 2.4.38,
    isiqephu 5.22.

Source: opennet.ru

Engeza amazwana