التنبيهات الأمنية

تم ارسال تقييمك بنجاح.
التصنيفات
تحتوي هذه المنشورات على تنبيهات أمنية، بما في ذلك ثغرات رقمية وهجمات إلكترونية وتحديثات تقنية، وقد تم تصنيفها وفقًا لحساسيتها.

عالٍ جدًا

عالي

متوسط

منخفض

تحديثات Red Hat

216

تاريخ التحذير: 8 مارس, 2020

مستوى الخطورة ● عالي

رقم التحذير: 2020-996

القطاع المستهدف: الكل

أصدرت Red Hat عدة تحديثات لمعالجة عدد من الثغرات في المنتجات التالية:

  • Eclipse Vert.x 3.8.5
    • Red Hat Openshift Application Runtimes Text-Only Advisories x86_64
  • OpenShift Container Platform 4.2.21
    • Red Hat OpenShift Container Platform 4.2 for RHEL 7 x86_64
  • xerces-c
    • Red Hat Enterprise Linux Server 6 x86_64
    • Red Hat Enterprise Linux Server 6 i386
    • Red Hat Enterprise Linux Workstation 6 x86_64
    • Red Hat Enterprise Linux Workstation 6 i386
    • Red Hat Enterprise Linux Desktop 6 x86_64
    • Red Hat Enterprise Linux Desktop 6 i386
    • Red Hat Enterprise Linux for Scientific Computing 6 x86_64
    • Red Hat Enterprise Linux Server 7 x86_64
    • Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7 x86_64
    • Red Hat Enterprise Linux Server - AUS 7.7 x86_64
    • Red Hat Enterprise Linux Workstation 7 x86_64
    • Red Hat Enterprise Linux Desktop 7 x86_64\
    • Red Hat Enterprise Linux for IBM z Systems 7 s390x
    • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.7 s390x
    • Red Hat Enterprise Linux for Power, big endian 7 ppc64
    • Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.7 ppc64
    • Red Hat Enterprise Linux for Scientific Computing 7 x86_64
    • Red Hat Enterprise Linux EUS Compute Node 7.7 x86_64
    • Red Hat Enterprise Linux for Power, little endian 7 ppc64le
    • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.7 ppc64le
    • Red Hat Enterprise Linux Server - TUS 7.7 x86_64
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.7 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.7 x86_64
  • http-parser
    • Red Hat Enterprise Linux Server 7 x86_64
    • Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7 x86_64
    • Red Hat Enterprise Linux Workstation 7 x86_64
    • Red Hat Enterprise Linux Desktop 7 x86_64
    • Red Hat Enterprise Linux for IBM z Systems 7 s390x
    • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.7 s390x
    • Red Hat Enterprise Linux for Power, big endian 7 ppc64
    • Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.7 ppc64
    • Red Hat Enterprise Linux for Scientific Computing 7 x86_64
    • Red Hat Enterprise Linux EUS Compute Node 7.7 x86_64
    • Red Hat Enterprise Linux Server - AUS 7.7 x86_64
    • Red Hat Enterprise Linux for Power, little endian 7 ppc64le
    • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.7 ppc64le
    • Red Hat Enterprise Linux Server - TUS 7.7 x86_64
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.7 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.7 x86_64
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.0 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.0 x86_64
    • Red Hat Enterprise Linux for x86_64 8 x86_64
    • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.1 x86_64
    • Red Hat Enterprise Linux for IBM z Systems 8 s390x
    • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.1 s390x
    • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
    • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.1 ppc64le
    • Red Hat Enterprise Linux for ARM 64 8 aarch64
    • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.1 aarch64
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.1 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.1 x86_64
  • python-waitress
    • Red Hat OpenStack 15 x86_64
    • Red Hat OpenStack for IBM Power 15 ppc64le
  • openstack-octavia
    • Red Hat OpenStack 15 x86_64
    • Red Hat OpenStack for IBM Power 15 ppc64le
  • sudo
    • Red Hat Enterprise Linux Server 6 x86_64
    • Red Hat Enterprise Linux Server 6 i386
    • Red Hat Enterprise Linux Workstation 6 x86_64
    • Red Hat Enterprise Linux Workstation 6 i386
    • Red Hat Enterprise Linux Desktop 6 x86_64
    • Red Hat Enterprise Linux Desktop 6 i386
    • Red Hat Enterprise Linux for IBM z Systems 6 s390x
    • Red Hat Enterprise Linux for Power, big endian 6 ppc64
    • Red Hat Enterprise Linux for Scientific Computing 6 x86_64
  • Red Hat Data Grid 7.3.3
    • Red Hat JBoss Data Grid Text-Only Advisories x86_64
  • Red Hat Data Grid 7.3.4
    • Red Hat JBoss Data Grid Text-Only Advisories x86_64
  • Red Hat Data Grid 7.3.5
    • Red Hat JBoss Data Grid Text-Only Advisories x86_64
  • qemu-kvm-rhev
    • Red Hat Virtualization Manager 4.2 x86_64
  • virt:8.1 and virt-devel:8.1
    • Red Hat Enterprise Linux Advanced Virtualization 8 x86_64
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM Power LE) 8 ppc64le
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for ARM 64) 8 aarch64
    • Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM System Z) 8 s390x
  • Red Hat OpenShift Service Mesh 1.0.9 servicemesh-proxy
    • Red Hat OpenShift Service Mesh 1.0 for RHEL 8 x86_64
  • OpenShift Container Platform 4.2.21 openshift/installer
    • Red Hat OpenShift Container Platform 4.2 for RHEL 7 x86_64

التهديدات:

يمكن للمهاجم استغلال الثغرات وتنفيذ ما يلي:

  • رفع الصلاحيات لزيادة قدرته على التعديل في النظام
  • تجاوز سعة مخزن الذاكرة المؤقت
  • هجمة حجب الخدمة (DoS attack)

الإجراءات الوقائية:

يوصي المركز بتحديث النسخ المتأثرة حيث أصدرتRed Hat توضيحًا لهذه التحديثات:

آخر تحديث في 8 مارس, 2020

قيم المحتوى

rate-icon
up icon