الموقع الرسمي للمركز الوطني الإرشادي للأمن السيبراني
تحديث Red Hat
1695
تاريخ التحذير
مستوى الخطورة
رقم التحذير
القطاع المستهدف
2 إبريل, 2020
● متوسط
2020-1091
الكل
الوصف:
أصدرت Red Hat عدة تحديثات لمعالجة عدد من الثغرات في المنتجات التالية:
- kernel
- Red Hat Enterprise Linux Workstation
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- advancecomp
- Red Hat Enterprise Linux Workstation
- wireshark
- Red Hat Enterprise Linux Workstation
- libosinfo
- Red Hat Enterprise Linux Workstation
- kernel-rt
- Red Hat Enterprise Linux for Real Time
- samba
- Red Hat Enterprise Linux Resilient Storage for x86_64
- python-twisted-web
- Red Hat Enterprise Linux Workstation
- qemu-kvm-ma
- Red Hat Enterprise Linux for IBM z Systems
- libreoffice
- Red Hat Enterprise Linux Workstation
- nbdkit
- Red Hat Enterprise Linux Server
- qemu-kvm-rhev
- Red Hat Virtualization Manager
- dpdk
- Red Hat Enterprise Linux Server
- podman
- Red Hat Enterprise Linux Workstation
- skopeo
- Red Hat Enterprise Linux Workstation
- buildah
- Red Hat Enterprise Linux Workstation
- docker
- Red Hat Enterprise Linux Server
- virt:8.1
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM System Z)
- Red Hat Enterprise Linux Advanced Virtualization
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM Power LE)
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for ARM 64)
- systemd
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- procps-ng
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- nss-softokn
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- python
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- DL1
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions
- chromium-browser
- Red Hat Enterprise Linux Workstation
- OpenShift Container Platform 4.3.9 ose-openshift-apiserver-container
- Red Hat OpenShift Container Platform
- OpenShift Container Platform 4.3.9 ose-openshift-controller-manager-container
- Red Hat OpenShift Container Platform
التهديدات:
يمكن للمهاجم استغلال الثغرات وتنفيذ ما يلي:
- الكشف والإفصاح غير المصرح به للمعلومات
- تجاوز آلية الحماية
- هجمة حجب الخدمة (DoS attack)
- تنفيذ برمجيات خبيثة
الإجراءات الوقائية:
يوصي المركز بتحديث النسخ المتأثرة حيث أصدرتRed Hat توضيحًا لهذه التحديثات:
- https://access.redhat.com/errata/RHSA-2020:1016
- https://access.redhat.com/errata/RHSA-2020:1037
- https://access.redhat.com/errata/RHSA-2020:1047
- https://access.redhat.com/errata/RHSA-2020:1051
- https://access.redhat.com/errata/RHSA-2020:1070
- https://access.redhat.com/errata/RHSA-2020:1084
- https://access.redhat.com/errata/RHSA-2020:1091
- https://access.redhat.com/errata/RHSA-2020:1150
- https://access.redhat.com/errata/RHSA-2020:1151
- https://access.redhat.com/errata/RHSA-2020:1167
- https://access.redhat.com/errata/RHSA-2020:1209
- https://access.redhat.com/errata/RHSA-2020:1216
- https://access.redhat.com/errata/RHSA-2020:1226
- https://access.redhat.com/errata/RHSA-2020:1227
- https://access.redhat.com/errata/RHSA-2020:1230
- https://access.redhat.com/errata/RHSA-2020:1231
- https://access.redhat.com/errata/RHSA-2020:1234
- https://access.redhat.com/errata/RHSA-2020:1261
- https://access.redhat.com/errata/RHSA-2020:1264
- https://access.redhat.com/errata/RHSA-2020:1265
- https://access.redhat.com/errata/RHSA-2020:1266
- https://access.redhat.com/errata/RHSA-2020:1267
- https://access.redhat.com/errata/RHSA-2020:1268
- https://access.redhat.com/errata/RHSA-2020:1269
- https://access.redhat.com/errata/RHSA-2020:1270
- https://access.redhat.com/errata/RHSA-2020:0933
- https://access.redhat.com/errata/RHSA-2020:0934
قيم المحتوى
شارك الصفحة
