I-ProHoster > Π‘Π»ΠΎΠ³ > izindaba ze-inthanethi > Buyekeza i-Java SE, i-MySQL, i-VirtualBox neminye imikhiqizo ye-Oracle enobuthakathaka isusiwe

Buyekeza i-Java SE, i-MySQL, i-VirtualBox neminye imikhiqizo ye-Oracle enobuthakathaka isusiwe

Inkampani ye-Oracle eshicilelwe ukukhishwa okuhleliwe kwezibuyekezo emikhiqizweni yayo (I-Critical Patch Update), okuhloswe ngayo ukuqeda izinkinga ezibucayi kanye nokuba sengozini. Ekubuyekezweni kukaJulayi, isamba se 319 ubuthakathaka.

Ezindabeni I-Java SE 12.0.2, 11.0.4 kanye ne-8u221 Izinkinga zokuphepha eziyi-10 zilungisiwe. 9 ubungozi bungasetshenziswa ukude ngaphandle kokuqinisekisa. Ileveli yokuqina ephezulu eyabelwe ngu-6.8 (ukuba sengozini ku-libpng). Azikho izinkinga eziphakeme noma ezibucayi ezitholiwe ezingavumela umsebenzisi ongagunyaziwe kunethiwekhi ukuthi afake engozini izinhlelo zokusebenza ze-Java SE.

Ngokungeziwe ezinkingeni eziku-Java SE, ubungozi buye badalulwa kweminye imikhiqizo ye-Oracle, okuhlanganisa:

  • 43 ubuthakathaka ku-MySQL (izinga eliphezulu lokuqina 9.8, elibonisa inkinga ebucayi). Inkinga eyingozi kakhulu
    (I-CVE-2019-3822) ehambisana ne ukuchichima kwe-buffer kukhodi yokuhlaziya unhlokweni we-NTLM kulabhulali ye-libcurl, engasetshenziswa ukuhlasela ukude iseva ye-MySQL ngomsebenzisi ongagunyaziwe. Cishe zonke ezinye izinkinga zivela kuphela uma kukhona ukufinyelela okuqinisekisiwe ku-DBMS. Okuhlukile kuphela ukuba sengozini ku-Shell: Admin / InnoDB Cluster, enikezwe izinga lobunzima lika-7.5. Izinkinga zizolungiswa ekukhishweni I-MySQL Community Server 8.0.17, 5.7.27 kanye ne-5.6.45.

  • 14 ubuthakathaka ku-VirtualBox, oku-3 kwakho kuyingozi kakhulu (i-CVSS Score 8.2 kanye ne-8.8). Ubungozi bulungisiwe kuzibuyekezo I-VirtualBox 6.0.10 kanye ne-5.2.32 (in inothi iqiniso lokuthi izinkinga zokuphepha zixazululiwe alizange limenyezelwe ngaphambi kokukhululwa). Imininingwane ayinikeziwe, kodwa, uma kubhekwa izinga le-CVSS, ubungozi obuvumela ikhodi ukuthi isetshenziswe ohlangothini lwesistimu yomsingathi endaweni yesistimu yesihambeli bususiwe;
  • 10 ubuthakathaka e-Solaris (izinga eliphezulu lokuqina 9.1 -
    Ukuba sengozini okuhlobene ne-IPv6 ku-kernel (CVE-2019-5597) okuvumela ukuhlasela okukude (imininingwane ayinikeziwe). Ukuba sengozini okubili nakho kunezinga lokuqina elibalulekile elingu-8.8 - izinkinga ezisebenzisekayo endaweni Kundawo Yedeskithophu Evamile kanye nezinsiza zeklayenti ze-LDAP. Izinkinga ezinezinga lokuqina elingaphezulu kuka-7 futhi zifaka phakathi ubungozi obusebenzisekayo ukude kubaphathi be-ICMPv6 kanye ne-NFS ku-Solaris kernel, nezinkinga zasendaweni ohlelweni lwefayela kanye ne-Gnuplot.

Source: opennet.ru

Engeza amazwana