Un ingxelo esemthethweni de Symantec ye-26 edlulileyo kaNovemba, ulumkiso ngobukho bentsholongwane entsha, ebhaptizwe njenge I-Linux iDarlioz, ezinokuchaphazela iintlobo ngeentlobo zeekhompyuter, ukuxhaphaza ubungozi "php-cgi" (CVE-2012-1823) ekhoyo kwi PHP 5.4.3 kunye no-5.3.13.
Obu bungozi buchaphazela ezinye iinguqulelo zonikezelo lwe GNU / Linux Njenge Ubuntu, TurboLinux, SuSE, Red Hat, Mandriva, Debian, kunye nabanye, kunye neMac OS X 10.7.1 ukuya kwi-10.7.4, kunye neMac OS X Server 10.6.8 ukuya kwi-10.7.3.
Nangona olu bungozi ku PHP yafunyanwa kwaye yalungiswa ukusukela ngoMeyi 2012, iikhompyuter ezininzi azisekho kumhla kwaye zisebenzisa iinguqulelo ezindala ze PHP, Oku kukhokelela kwithagethi enokubakho yosulelo olukhulu.
Inkqubo yosulelo, njengoko kuchaziwe kwi inqaku de PCWorld, oku kulandelayo:
Nje ukuba yenziwe, umbungu uvelisa ngokungathandabuzekiyo iidilesi ze-IP, ukufikelela kumgaqo othile kumatshini onesazisi kunye negama lokugqitha, kwaye uthumele izicelo ze-HTTP POST, ezixhaphaza ubungozi. Ukuba umngcipheko awulungiswanga kwithagethi, umbungu ukhutshelwa kwiserver enobungozi kwaye uqala ukukhangela ekujolise kuko okutsha.
Ngoku ka ithunyelwe kwibhlog yakho yi Kaoru hayashi, umphandi we Symantec, le ntshulube intsha ibonakala ngathi yenzelwe ukosulela, ukongeza kwiikhompyuter zemveli, uluhlu olubanzi lwezixhobo ezidityaniswe nenethiwekhi, ezinje ngee-routers, iibhokisi eziziiseti eziphezulu, iikhamera zokhuseleko, njl.njl. GNU / Linux.
Nangona kunjalo Symantec ivavanya inqanaba lomngcipheko wale ntsholongwane njenge "isezantsi kakhulu" kunye namanqanaba okusasazeka nosongelo njenge "lisezantsi" kwaye ithathela ingqalelo ukuthintela nokususwa kwayo "kulula", enyanisweni umngcipheko onokuthi ubonakalise uphindaphindwe kakhulu ukuba sithathela ingqalelo ukwanda koko kubizwa ngokuba yi "intanethi yezinto" bekubhalisa kumaxesha akutshanje.
Elinye ixesha ngoku SymantecOkwangoku ukusasazeka kwentshulube kwenzeka kuphela phakathi kweenkqubo ezingama-x86 okoko kukhutshelwa okubini okukhoyo I-ELF (Ifomathi ephumezekayo kunye neDibeneyo) yoyilo loyilo Intel, kodwa abaphandi babonisa ukuba iiseva zikwabamba izinto ezahlukeneyo zokwakha ARM, PPC, IIMPENDU y I-MIPSEL, ejongene kakhulu nokunikwa amandla aphakamileyo ezixhobo kunye nolwakhiwo olunokuthi losuleleke.
Kuyaziwa ukuba i-firmware efakwe kwizixhobo ezininzi isekwe kwi GNU / Linux Kwaye kubandakanya iserver yewebhu nge PHP ujongano lomlawuli.
Oku kuthetha ukuba umngcipheko onokubakho mkhulu kakhulu kunezo zeekhompyuter ngalo naluphi na ulwabiwo lwe GNU / LinuxKuba ngokungafaniyo nale yokugqibela, abafumani rhoqo uhlaziyo lokhuselo oluyimfuneko ukulungisa ubungozi obufunyenweyo, apho kongezwe ukuba ukwenza uhlaziyo lwe-firmware inqanaba elithile lolwazi lobuchwephesha liyafuneka, nenxalenye elungileyo yabanini izixhobo ezinjalo.
Las iingcebiso ukuthintela usulelo ngale mpethu zilula kakhulu: gcina iinkqubo zethu zihlaziywa ngemigangatho yokhuseleko epapashiweyo kunye namanyathelo okhuseleko olusisiseko nezixhobo eziqhagamshelwe kwinethiwekhi, ezinje nge tshintsha idilesi ye-IP emiselweyo, igama lomsebenzisi kunye negama lokugqitha y gcina i-firmware ihlaziywa, nokuba ikhutshwe ngumenzi, okanye ngokulinganayo simahla okufumaneka kwiziza ezaziwayo.
Kukwacetyiswa ukuba kuthintelwe izicelo ezingenayo ze-POST kunye nolunye uhlobo lwefowuni ye-HTTPS, nanini na kunokwenzeka.
Kwelinye icala, ukusukela ngoku ukuya phambili kuyacetyiswa ukuba kuthathelwe ingqalelo xa kuvavanywa ukufunyanwa kwaso nasiphi na isixhobo esitsha, ukukhululeka kokuhlaziya i-firmware kunye nenkxaso yexesha elide ebonelelwa ngumenzi.
Okwangoku, ndihlaziya i-firmware yendlela yam yeNetgear, ethi ixesha elide ikuluhlu lwemisebenzi esalindelweyo, hleze izalisekiswe ukuba "endlwini yentsimbi ..."
Qaphela: Uluhlu oluneenkcukacha lonikezelo lwe GNU / Linux oko kwasekuqaleni kuqulathe ukuba semngciphekweni kwe PHP Ukuxhatshazwa yile ntsholongwane kuyafumaneka kwezi zilandelayo ikhonkco.