FITOWA, mafi hatsari fiye da Mai Zuciya

Isaac

2 minti

Venom Spiderman

VENOM ita ce mafi munin rauni fiye da Zuciya, sanannen aibi na tsaro a cikin OpenSSL daga wanda munyi magana a cikin wannan shafin. Yana shafar sabar GNU/Linux, kuma kamar yadda yake tare da Heartbleed zaku iya dawo da bayanai daga ƙwaƙwalwar uwar garken nesa ba tare da samun izini ba, VENOM shima barazanar tsaro ce.

VENOM (CVE-2015-3456) batu ne da aka gano kwanan nan wanda zai iya shafar miliyoyin sabar da kwamfutoci. Mafi munin abu shine yana ɗauka yanzu fiye da shekaru 11 kuma yana ba mai amfani da nisa damar yin amfani da wannan raunin don samun dama ga na'ura mai kama-da-wane. Don haka sunanta, tunda VENOM ita ce gajarta ta Mahimman Ayyukan Gudanar da Muhalli na Gaggauta. 

con VENOM na iya ƙetare iyakar injin kama-da-wane wanda ke ba da sabis ɗin kuma yana aiki kai tsaye tare da na'ura na ainihi don aiwatar da lambar ɓarna akansa, samun damar sauran injunan kama-da-wane da ke cikin tsarin, samun dama ga sauran wuraren cibiyar sadarwar bayanai, da sauransu.

Kuma dalilin wannan matsalar shine tsoho, amma har yanzu akwai. mai kula da floppy. Kodayake faifan floppy a zahiri sun daina aiki, har yanzu ana kiyaye su saboda dalilai na dacewa da baya. A zahiri, ya shafi kusan 95% na tsarin kamar:

  • RHEL 5.x, 6.x da 7.x
  • CentOS Linux 5.x, 6.x, 7.x
  • OpenStack 4, 5 (RHEL 6), da 5 da 6 (RHEL 7).
  • Haɓaka Haɓaka Kasuwancin Red Hat 3.
  • Debian da sauran distros dangane da shi. Ciki har da Ubuntu (12.04, 14,04, 14,10 da 15.04).
  • SUSE Linux Enterprise Server 5, 6, 7, 10, 11, 12 (a cikin duk fakitin sabis)

Don gyara wannan matsalar VENOM, Ya kamata ku ci gaba da rarrabawar ku a matsayin sabuntawa kamar yadda zai yiwu tare da sababbin facin tsaro. Hakanan, idan kuna amfani da VirtualBox, dole ne ku sabunta shi zuwa sigar 4.3 ko sama (lokacin da suka fito). Ko da yake ba zai zama dole a sake kunna tsarin ba, zai zama dole a sake kunna na'urori masu kama da juna don magance matsalar.

Har ila yau yana shafar injunan kama-da-wane tare da QEMU, XEN, KVM da Citrix. Amma ba ya shafar tsarin VMWare, Hyper-V na Microsoft, kuma baya shafar BOCHS. Don haka ci gaba da sabuntawa kuma gano a cikin yanayin ku yadda ake gyara matsalar. Da fatan wannan shine farkawa ga masu haɓakawa, waɗanda kuma yakamata su duba tsohuwar lambar don kada waɗannan abubuwan su faru.


Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Alhakin bayanai: AB Internet Networks 2008 SL
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.