Isibungu esisha esithinta i-GNU / Linux siqinisekiswe yiSymantec

Un umbiko osemthethweni de Symantec ngoNovemba 26 odlule, isexwayiso sokuba khona kwegciwane elisha, elibhabhadiswe njenge I-Linux Darlioz, okungathinta izinhlobo eziningi zamakhompyutha, kuxhashazwa ubungozi be- "php-cgi" (CVE-2012-1823) ekhona e- PHP 5.4.3 no-5.3.13.

Lokhu kuba sengozini kuthinta ezinye izinhlobo zokusabalalisa ze- I-GNU / Linux njenge-Ubuntu, iTurboLinux, i-SuSE, i-Red Hat, i-Mandriva, i-Debian, nabanye, kanye ne-Mac OS X 10.7.1 nge-10.7.4, ne-Mac OS X Server 10.6.8 nge-10.7.3.

Yize lokhu kuba sengozini ku- PHP itholwe yalungiswa kusukela ngoMeyi 2012, amakhompyutha amaningi asephelelwe yisikhathi futhi asebenzisa izinhlobo zakudala ze- PHP, okuholela ekuhlosweni okungenzeka kube nokutheleleka okukhulu.

Inqubo yokutheleleka, njengoba kuchaziwe ku- i-athikili de PCWorld, okulandelayo:

Uma sesenziwe, isibungu senza amakheli e-IP ngezikhathi ezithile, sifinyelele indlela ethile emshinini ene-ID nephasiwedi eyaziwayo, bese sithumela izicelo ze-HTTP POST, ezixhaphaza ukuba sengozini. Uma ukuba sengozini kungalungiswa kuthagethi, isibungu silandwa kusuka kuseva enonya bese siqala ukufuna okuqondiwe okusha

Ngokuvumelana ne okuthunyelwe kubhulogi yakho por Kaoru hayashi, umcwaningi we Symantec, lesi sibungu esisha sibonakala senzelwe ukuthelela, ngaphezu kwamakhompyutha wendabuko, amadivayisi anhlobonhlobo axhunywe kunethiwekhi, njengama-routers, ama-set-top box, amakhamera ezokuphepha, njll., asebenza ngokuhlukahluka okuhlukahlukene I-GNU / Linux.

Noma kunjalo Symantec ihlola izinga lobungozi laleli gciwane njenge "liphansi kakhulu" kanye namazinga okusatshalaliswa nosongo njengokuthi "aphansi" futhi ibheka okuqukethe nokususa "okulula", empeleni ingozi engaba khona eliyibonayo iphindaphindwe kakhulu uma sicabanga ngobukhulu ukwandisa ukuthi okubizwa ngokuthi "i-intanethi yezinto" bekulokhu kubhaliswa ezikhathini zamuva.

Isikhathi esisodwa futhi ngokusho Symantec, okwamanje ukusakazeka kwesibungu kwenzeka kuphela phakathi kwezinhlelo ze-x86 njengoba i-binary elandiwe iku- Elf (Iyasebenza futhi iyaxhuma) yokwakha Intel, kepha abacwaningi bakhombisa ukuthi amaseva futhi abamba okuhlukile kokwakhiwa ARM, PPC, IZIMPAWU y I-MIPSEL, okuphathelene kakhulu nokunikezwa amandla aphezulu amadivayisi analezi zakhiwo okungenzeka zitheleleke.

Unhlokweni we-ELF wenguqulo yesibungu se-ARM

Unhlokweni we-ELF wenguqulo yesibungu se-ARM

Kuyaziwa ukuthi i-firmware efakwe kumadivayisi amaningi isuselwe ku- I-GNU / Linux futhi imvamisa kufaka phakathi iseva yewebhu nge PHP yesixhumi esibonakalayo somlawuli.

Lokhu kusho ukuthi ubungozi bungaba bukhulu kakhulu kunalelo lwamakhompyutha nganoma yikuphi ukusatshalaliswa kwe- I-GNU / Linux, ngoba ngokungafani nalokhu okwedlule, abazitholi njalo izibuyekezo zokuphepha ezidingekayo ukulungisa ubungozi obutholakele, okunezelwa ukuthi ukwenza ukuvuselelwa kwe-firmware kudingeka ulwazi oluthile lobuchwepheshe, okuyingxenye enhle yabanikazi be amadivayisi anjalo.

I-Las izincomo zokugwema ukutheleleka ngalesi sibungu kulula kakhulu: gcina amasistimu ethu evuselelwa ngamachashazi ezokuphepha ashicilelwe nezinyathelo zokuphepha eziyisisekelo ezinamadivayisi axhunywe kunethiwekhi, njenge shintsha ikheli le-IP elizenzakalelayo, igama lomsebenzisi nephasiwedi y gcina i-firmware ivuselelwe, kungaba yilabo abakhishwe ngumkhiqizi, noma ngokulingana kwamahhala okutholakala kumasayithi abonwayo.

Kunconywa futhi ukuvimba izicelo ezingenayo ze-POST kanye nanoma yiluphi olunye uhlobo lwekholi ye-HTTPS, lapho kungenzeka khona.

Ngakolunye uhlangothi, kusukela manje kuye kwaphakanyiswa ukuthi kubhekwe lapho kuhlolisiswa ukutholwa kwanoma iyiphi imishini emisha, ukukhululeka kokubuyekeza i-firmware kanye nokuxhaswa kwesikhathi eside okunikezwa ngumenzi.

Okwamanje, ngibuyekeza i-firmware yomzila wami weNetgear, obekuyisikhathi eside usohlwini lwemisebenzi esalindile, hleze kugcwaliseke ukuthi "endlini yensimbi ..."

Qaphela: Uhlu oluningiliziwe lokusatshalaliswa kwe- I-GNU / Linux lokho ekuqaleni kuqukethe ukuba sengozini kwe- PHP ukuxhashazwa yilo gciwane kuyatholakala kokulandelayo isixhumanisi.


Okuqukethwe yi-athikili kunamathela ezimisweni zethu ze izimiso zokuhlelela. Ukubika iphutha chofoza lapha.