À´Ô´£ºcnbeta
CentOSµÄά»¤ÍŶӳÉÔ±Johnny HughesÏòÉçÇø·¢²¼¹«¸æ£¬Õë¶ÔCentOS 7²Ù×÷ϵͳ·ÖÖ§ÍƳöÁËȫеÄÖØÒªÄں˰²È«¸üУ¬¹²¼ÆÐÞ¸´ËÄ´¦½üÆÚ·¢Ïֵĩ¶´¡£ Ê×ÏȵÚÒ»¸ö©¶´£¨CVE-2017-2636£©ÊÇÓÉ Alexander Popov±¨¸æÔÚLinux KernelÖеÄN_HLDCÇý¶¯Öз¢ÏֵľºÌ¬Ìõ¼þ©¶´£¬Í¨¹ýÔÚTTYÉ豸ÉÏÉèÖÃHDLCÏß·ִÐÐÌáȨ²Ù×÷»ñµÃrootȨÏÞ¡£¶øÁíÒ»¸ö©¶´£¨CVE-2017-2618£©ÔòÊÇÔÚÇå³ý/proc/pid/attrÎļþµÄSELinuxÊôÐÔʱºòµ¼ÖÂϵͳ±ÀÀ£µÄÇé¿ö¡£
µÚÈý¸ö©¶´£¨CVE-2016-8650£©ÊÇÓÉRalf Spenneberg±¨¸æµÄ£¬Î£Ïյȼ¶±ê¼ÇΪmoderate£¬³öÏÖÔÚLinux KernelµÄÃÜÔ¿¹ÜÀí×ÓϵͳÖС£Äܹ»Èñ¾µØ¹¥»÷Õßͨ¹ýÌṩһϵÁÐÌرðαװµÄRSAÃÜÔ¿µ¼Ö¾ܾø·þÎñ»òÕßÄں˱ÀÀ£¡£
µÚËĸö©¶´£¨CVE-2016-9793£©Í¬Ñù±ê¼ÇΪmoderate£¬ÔÚLinux KernelÖÐÆô¶¯setsockopt¹ý³ÌÖÐϵͳµ÷ÓÃSO_{SND|RCV}BUFFORCE setsockopt()³öÏÖµÄÎÊÌ⡣ͨ¹ýÕâ¸ö©¶´£¬¹¥»÷ÕßÄܹ»µ¼ÖÂÄÚ´æ´íÎó»òÕßϵͳ±ÀÀ£¡£