Ãë¾àÁ¡ID |
14224 |
À§Çèµµ |
40 |
Æ÷Æ® |
22 |
ÇÁ·ÎÅäÄÝ |
TCP |
ºÐ·ù |
LSC |
»ó¼¼¼³¸í |
¿ø°Ý ½Ã½ºÅÛ¿¡´Â kernel security updateÀÎ CESA-2019:1488ÀÌ ÆÐÄ¡µÇ¾î ÀÖÁö ¾Ê´Ù. ÆÐÄ¡ Àü kernel¿¡´Â ´ÙÀ½°ú °°Àº Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù.
- TCP Selective Acknowledgment(SACK)¸¦ ó¸®ÇÒ ¶§ ¸®´ª½º Ä¿³Î¿¡¼ Á¤¼ö ±â¹ÝÀÇ ¿À¹öÇ÷ο찡 ¹ß»ýÇÑ´Ù. ÀÌ·Î ÀÎÇØ ¼ºñ½º °ÅºÎ°¡ ¹ß»ýÇÒ ¼ö ÀÖ´Ù. (CVE-2019-11477)
- lib/idr.c ÆÄÀÏ¿¡ ¸Þ¸ð¸®¸¦ ÀÌÁßÀ¸·Î ÇØÁ¦ÇÏ´Â ¿À·ù°¡ Á¸ÀçÇÑ´Ù. (CVE-2019-3896)
- TCP Selective Acknowledgment(SACK) ºí·ÏÀ» ó¸®ÇÒ ¶§ ¸®¼Ò½º¸¦ °ú´ÙÇÏ°Ô »ç¿ëÇÑ´Ù. ÀÌ·Î ÀÎÇØ ¼ºñ½º °ÅºÎ°¡ ¹ß»ýÇÒ ¼ö ÀÖ´Ù. (CVE-2019-11478)
- MSS TCP Ä¿³Ø¼ÇÀ» ¸ÎÀ» ¶§ ¸®¼Ò½º¸¦ °ú´ÙÇÏ°Ô »ç¿ëÇÑ´Ù. ÀÌ·Î ÀÎÇØ ¼ºñ½º °ÅºÎ°¡ ¹ß»ýÇÒ ¼ö ÀÖ´Ù. (CVE-2019-11479)
* Âü°í »çÀÌÆ®: https://lists.centos.org/pipermail/centos-announce/2019-June/023332.html
* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº ÀÌ Ãë¾àÁ¡À» Á¡°ËÇϱâ À§ÇØ ÇØ´ç ¿ø°ÝÁö ¼¹öÀÇ kernel RPM ¹öÀü Á¤º¸¸¸À» È®ÀÎÇÑ´Ù. µû¶ó¼ °ÅÁþ ¾ç¼º¹ÝÀÀ(False Positive)À» º¸ÀÏ ¼ö ÀÖ´Ù.
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû: CentOS Linux Server (v. 6) |
ÇØ°áÃ¥ |
´ÙÀ½ ÀýÂ÷¿¡ µû¶ó ¿µÇâ¹Þ´Â ÆÐÅ°Áö¸¦ ¾÷µ¥ÀÌÆ® ÇÑ´Ù. System -> Administration -> Software Update
¶Ç´Â Ä¿¸Çµå¶óÀο¡¼ ´ÙÀ½°ú °°ÀÌ OS¸¦ ¾÷µ¥ÀÌÆ® ÇÑ´Ù. # yum update |
°ü·Ã URL |
CVE-2019-11477,CVE-2019-11478,CVE-2019-11479,CVE-2019-3896 (CVE) |
°ü·Ã URL |
(SecurityFocus) |
°ü·Ã URL |
(ISS) |
|