Akukho nkqubo yokusebenza igqibeleleyo. Bekusoloko kuthethwa njalo. Ngapha koko, eli nqaku liza nje emva kwemizuzu emva kwenye sathetha Yobungozi bosuku lwe-zero ababhengeze esidlangalaleni kwiiyure ezimbalwa ezidlulileyo. Into ekufuneka sithethe ngayo ngoku yinto engabalulekanga kangako, kuba ibikhona kwi Pwn2Yenziwe ngo-2020 apho bugs zamva nje zifunyenwe Windows 10, macOS, kunye Ubuntu. Ayinzulu kangako kwithiyori, kuba ngoku ziinkampani ekufuneka zilungise iziphene ezifunyenweyo.
El Pwn2Yenziwe I-2020 ibikupapasho lwalo nyaka ukhuphiswano lwabagculeli enye yazo isebenzela ubuncinci izinto ezimbini: eyokuqala kukuthatha ibhaso lemali, kwaye okwesibini kukuzazisa kwihlabathi, elinokuthi livumele ukuba bafumane umsebenzi onokuthi ngamanye amaxesha ubenze baphelele kwinkampani enkulu. ezinje nge "Bavele".
Ubuntu baxhaphazelwa i-kernel yayo kwi-Pwn2Own 2020
Ngokubhekisele kwiLinux, yayiyinkqubo yokusebenza Ubuntu leyo iwe Bambisana neqela leRedRocket CTF. Eli qela lifumene i-LPE (Ukunyuselwa kwelungelo laseKhaya) ukubavumela ukuba bafumane ukufikelela kwengcambu. Iqela lokugenca lithathe i-30.000 yeedola kuxhaphazo lwabo. Kodwa amanye amaqela athabathe imali ethe kratya, ithiyori, ekufumaneni kubaluleke kakhulu okanye uninzi lweebugs.
Ibhaso lokuqala laya kwiqela elifumene ukuxhaphaza eSafari ngenye i-LPE kwi-macOS kernel echaphazele isikhangeli sakho. Iqela eliyifumeneyo, iGeorgia Tech Systems Software kunye neLebhu yoKhuseleko, lithathe i-70.000 yeedola ngokufunyanwa kwayo, ubukhulu becala ngenxa yokuba ukuxhaphaza kubandakanya iitops ezintandathu. Iqela likwazile ukukhubaza i-SIP (uKhuseleko lweNkqubo yokuGqibeka) kwenkqubo yokusebenza.
Ngandlela-thile ufumene umsebenzisi owaziwa ngokuba yiFluorescence, igqala lePwn2Own elisebenzise i-UAF yakhe (emva kokusebenzisa simahla) ibug ukufumana amalungelo enkqubo kwiWindows. I-Fluorescence yathatha i-40.000 yeedola ekhaya. Enye isoftware eyaphulwayo ngexesha lokhuphiswano yayi I-VirtualBox, iAdobe Reader kwiWindows nakwiVMWare Workstation, nangona eyokugqibela ibingenakuboniswa kwaye akukho bhaso liphumeleleyo. Abaququzeleli bakwazile ukuxhaphaza i-VMWare Workstation bug ngokujonga emva, ke ubuncinci balikhankanyile iqela eliyifumeneyo.
Ukhuphiswano lwalo nyaka lwahlukile kwiminyaka edlulileyo: ibanjwe kwi-Intanethi ngenxa yeCoronavirus. Ngayiphi na imeko, kwaqinisekiswa kwakhona ukuba akukho nkqubo yokusebenza ikhuselekileyo, njengoko kungakhuselekanga ukuba ubani aphume aye esitratweni ngeli xesha. Ke, kwakhona, siza kuthi izinto ezimbini: hlala ekhaya kwaye ugcine inkqubo yakho yokusebenza ihlaziywa rhoqo.
Ubuntu bufana nomoya * ws. I-Q igqekeziwe yimfihlo evulekileyo (yiya kuGoogle ngesihloko). Ingcamango yakhe yokhuseleko kukubeka isitshixo esiphezulu ukuze ezi mfutshane zingafiki kuye. Ukusukela isihloko sithi "Linux" Ndicinge iLinux yokwenyani.
Inqaku elinomdla.
Nayiphi na i-distro esebenzisa iSudo ... iyatshabalala ... ukwenza njengengcambu usebenzisa igama eligqithisiweyo lomsebenzisi ayiloshishini elilungileyo, nokuba bathini na kwaye bacinga ntoni.