Isilumkiso sezokhuseleko: i-bug kwi-Sudo CVE-2017-1000367

Isaac

Imizuzu ye2

UKhuseleko

Inye Ubungozi obukhulu kwisixhobo esidumileyo sothando. Ukuba semngciphekweni kungenxa yegciwane kwinkqubo yesi sixhobo esivumela nawuphi na umsebenzisi oneseshoni kwigobolondo (nokuba inikwe iSELinux amandla) ukunyusa amalungelo ukuba abe yingcambu. Ingxaki ilele kukungasebenzi kakuhle kwesudo ukwahlula umxholo we / proc / [PID] / stat xa uzama ukumisela i-terminal.

I-bug efunyenwe ngokukodwa kwifowuni fumana_process_ttyname () I-Sudo yeLinux, evula umkhombandlela okhankanywe ngaphambili ukuze ufunde inombolo yefowuni tty yentsimi ye-tty_nr. Obu bungozi bucwangciswe njenge-CVE-2017-1000367 bunokuxhaphaza ukufumana amalungelo enkqubo, njengoko benditshilo, ke kubaluleke kakhulu kwaye kuchaphazela unikezelo oluninzi olwaziwayo nolubalulekileyo. Kodwa musa ukoyika, ngoku sixelela indlela yokuzikhusela ...

Ewe, i Ulwabiwo oluchaphazelekayo lukhona:

  1. I-Red Hat Enterprise Linux 6, 7 kunye neServer
  2. I-Oracle Enterprise 6, 7 kunye neServer
  3. CentOS Linux 6 kunye no-7
  4. UDebian Wheezy, uJessie, uSolula, uSid
  5. Ubuntu 14.04 LTS, 16.04 LTS, 16.10 kunye ne-17.04
  6. I-SuSE LInux Enterpsrise Software Development Kit 12-SP2, iServer yeRaspberry Pi 12-SP2, iServer 12-SP2 kunye neDesktop 12-SP2
  7. I-OpenSuSE
  8. Slackware
  9. Gentoo
  10. Arch Linux
  11. Fedora

Ke ngoko, kufuneka patch okanye uhlaziyo Inkqubo yakho ye-ASAP ukuba unayo enye yezi nkqubo (okanye ezivela kwezinye):

  • OkweDebian kunye nokuphuma (Ubuntu, ...):
sudo apt update

sudo apt upgrade
  • Ye-RHEL kunye neziphumo (i-CentOS, i-Oracle, ...):
sudo yum update
  • KwiFedora:
sudo dnf update
  • I-SuSE kunye neziphumo (OpenSUSE, ...):
sudo zypper update

IArch Linux:

sudo pacman -Syu
  • Islackware:
upgradepkg sudo-1.8.20p1-i586-1_slack14.2.txz
  • Gentoo:
emerge --sync

emerge --ask --oneshot --verbose ">=app-admin/sudo-1.8.20_p1"

Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Inoxanduva lwedatha: I-AB Internet Networks 2008 SL
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.

  1.   fedu sitsho
    yenzayo 7 iminyaka

    Yeyiphi eya kusetyenziselwa iArchlinux nangaphambili?

    Phendula kwi-fedu
    1.    UIsake PE sitsho
      yenzayo 7 iminyaka

      Sawubona,

      Kubekho impazamo ekufakweni kwekhowudi. Ngoku uyayibona.

      Ukubulisa kunye nombulelo ngokucebisa.

      Phendula u-Isaac PE
  2.   ifernan sitsho
    yenzayo 7 iminyaka

    Sawubona,
    Ewe, kwi-arch kunye neziphumo ze-sudo pacman -Syyu
    Ukubulisa

    Phendula ku-fernan
  3.   ilorabe sitsho
    yenzayo 7 iminyaka

    Kungenxa yoko le nto i-Sudo ihlaziyiwe ... kunjalo, into eyingozi yinto yokuba ayaziwa ukuba ngubani, ngaphandle kwalowo ngoku une-bug, ngubani omnye owaziyo. Kwaye oko kunokuba yingozi.

    Phendula u-lorabe