Abacwaningi benkampani yokuvikela ulwazi yaseJalimane i-ERNW bathole ubungozi ku-Bluetooth kumadivayisi e-Android. Ukuxhashazwa kokuba sengozini kuvumela umhlaseli ngaphakathi kwebanga le-Bluetooth ukuthi athole ukufinyelela kudatha egcinwe kudivayisi yomsebenzisi, futhi kwenza kube nokwenzeka ukulanda uhlelo olungayilungele ikhompuyutha ngaphandle kwanoma yisiphi isenzo ngasohlangothini lwesisulu.
Ukuba sengozini okukhulunywa ngakho kukhonjwe njenge-CVE-2020-0022. Ithinta amadivayisi ane-Android 9 (Pie), Android 8 (Oreo). Kungenzeka ukuthi inkinga iyasebenza nasezinguqulweni zangaphambili zeplathifomu yesofthiwe, kodwa abacwaningi abazange baqinisekise lolu lwazi. Ngokuqondene ne-Android 10, umzamo wokusebenzisa lobu bungozi kudivayisi esebenzisa le OS uphumela ekumisweni kwe-Bluetooth.
Umbiko uphawula ukuthi ukuxhaphaza ubungozi, umhlaseli akadingi ukuphoqa isisulu ukuthi senze noma yisiphi isenzo; kwanele ukwazi ikheli le-MAC.
Ukuba sengozini kutholwe ngoNovemba 3, 2019, ngemuva kwalokho abacwaningi bazisa onjiniyela abavela ku-Google ngakho. Inkinga yagcina ixazululiwe kusibuyekezo sokuvikeleka sikaFebruwari senkundla ye-Android. Abasebenzisi bayelulekwa ukuthi bafake le phakheji yokubuyekeza ukuze bagweme izinkinga ezingaba khona ngokuntshontshwa kwedatha ye-Bluetooth.
Ochwepheshe batusa ukuthi abasebenzisi basebenzise i-Bluetooth ezindaweni zomphakathi kuphela uma kunesidingo. Ngaphezu kwalokho, akufanele wenze idivayisi ibonakale kwabanye abasebenzisi, futhi akufanele ucinge amagajethi atholakala nge-Bluetooth. Kunoma ikuphi, lezi zinyathelo zokuqapha zizohlala zisebenza kuze kube yilapho abasebenzisi bafaka isibuyekezo sikaFebruwari kumadivayisi abo.
Source: 3dnews.ru