TR-20-604 (Ghostscript Güvenlik Güncellemesi)

Genel Bilgi

Ghostscript ürününde bulunan DoS zafiyetlerine yönelik güvenlik güncellemesi yayınladı.

Etki

Mevcut güvenlik açıklıkları nedeniyle siber saldırganların zafiyetleri kullanarak saldırılarını gerçekleştirmeleri ihtimal dâhilindedir. Güncellemelerle ilgili CVE zafiyet kodları listelenmiştir CVE-2020-17538, CVE-2020-16287, CVE-2020-16288, CVE-2020-16289, CVE-2020-16290, CVE-2020-16291, CVE-2020-16292, CVE-2020-16293, CVE-2020-16294, CVE-2020-16295, CVE-2020-16296, CVE-2020-16297, CVE-2020-16298, CVE-2020-16299, CVE-2020-16300, CVE-2020-16301, CVE-2020-16302, CVE-2020-16303, CVE-2020-16304, CVE-2020-16305, CVE-2020-16306, CVE-2020-16307, CVE-2020-16308, CVE-2020-16309 ve CVE-2020-16310 .

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM) kullanıcı ve sistem yöneticilerine dokümanını gözden geçirmelerini ve gerekli güncellemeleri yapılmasını tavsiye etmektedir.

Kaynaklar

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16287

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16288

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16289

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16290

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16291

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16292

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16293

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16294

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16295

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-16296

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-17538

2020-08-13