Sabuntawar May's Patch Talata sun sanya yin faci na gaggawa ya zama dole

Faci Talata na wannan makon da ya gabata ya fara da sabuntawa 73, amma ya ƙare (har ya zuwa yanzu) tare da bita guda uku da ƙarin ƙari.CVE-2022-30138) don jimlar 77 raunin da aka magance wannan watan. Idan aka kwatanta da faɗuwar saitin abubuwan sabuntawa da aka fitar a cikin Afrilu, muna ganin babban gaggawa a cikin facin Windows - musamman tare da kwanaki uku na sifili da manyan lahani da yawa a cikin mahimman sabar da wuraren tantancewa. Musanya zai buƙaci kulawa, kuma, saboda sabuwar fasahar sabunta uwar garken.

Babu sabuntawa a wannan watan don masu binciken Microsoft da Adobe Reader. Kuma Windows 10 20H2 (da kyar mun san ku) yanzu ya ƙare.

Kuna iya samun ƙarin bayani kan haɗarin tura waɗannan sabuntawar Patch Tuesday a ciki wannan m infographic, kuma Cibiyar MSRC ta buga kyakkyawan bayyani na yadda take tafiyar da sabunta tsaro nan.

Mabuɗin gwaji yanayin

Ganin ɗimbin canje-canjen da aka haɗa tare da wannan zagayowar facin na Mayu, Na rushe yanayin gwaji zuwa ƙungiyoyi masu haɗari da ƙaƙƙarfan haɗari:

Babban Hadarin: Wataƙila waɗannan canje-canjen sun haɗa da canje-canjen ayyuka, na iya ɓata ayyukan da ake da su kuma suna iya buƙatar ƙirƙirar sabbin tsare-tsaren gwaji:

• Gwada takaddun shaida na kasuwancin ku (dukkan sababbi da sabuntawa). Sabar yankin ku KDC za ta tabbatar da sabbin kari da aka haɗa cikin wannan sabuntawa ta atomatik. Nemo ingantattun abubuwan da suka gaza!
• Wannan sabuntawa ya haɗa da canji ga sa hannun direba wanda yanzu ya haɗa da duba tambarin lokaci haka ma sa hannu na ingantattun code. Direbobin da aka sa hannu su yi lodi. Bai kamata direbobin da ba su sa hannu ba. Bincika gwajin gwajin aikace-aikacen ku don gazawar lodin direba. Haɗa cak don sa hannun EXEs da DLLs ma.

Canje-canje masu zuwa ba a rubuta su kamar sun haɗa da canje-canjen aiki, amma har yanzu za su buƙaci aƙalla "gwajin hayaki” gabanin tura facin na Mayu gabaɗaya:

• Gwada abokan cinikin ku na VPN lokacin amfani RRAS sabobin: sun haɗa da haɗi, cire haɗin (ta amfani da duk ka'idoji: PPP/PPTP/SSTP/IKEv2).
• Gwada cewa fayilolin EMF ɗinku sun buɗe kamar yadda aka zata.
• Gwada Littafin Adireshin Windows ɗinku (WAB) dogaro da aikace-aikace.
• Gwaji BitLocker: fara/ dakatar da injin ku da BitLocker kunna sannan a kashe.
• Tabbatar cewa ana samun dama ga takaddun shaidarku ta hanyar VPN (duba Manajan Tabbatar da Microsoft).
• Gwada ku V4 direbobi masu bugawa (musamman da zuwan daga baya CVE-2022-30138). 

Gwajin wannan watan zai buƙaci sake kunnawa da yawa zuwa albarkatun gwajin ku kuma yakamata ya haɗa da (BIOS/UEFI) injina na zahiri da na zahiri.

Abubuwan da aka sani

Microsoft ya haɗa da jerin sanannun batutuwa waɗanda suka shafi tsarin aiki da dandamali da aka haɗa cikin wannan sake zagayowar sabuntawa:

• Bayan shigar da sabuntawar wannan watan, na'urorin Windows masu amfani da wasu GPUs na iya haifar da su apps don rufewa ba zato ba tsammani, ko ƙirƙirar keɓaɓɓen lambar (0xc0000094 a module d3d9on12.dll) a ciki apps ta amfani da Direct3D Version 9. Microsoft ya buga a Kir sabunta manufofin kungiya don warware wannan batu tare da saitunan GPO masu zuwa: Zazzage don Windows 10, sigar 2004, Windows 10, sigar 20H2, Windows 10, sigar 21H1, da Windows 10, sigar 21H2.
• Bayan shigar da sabuntawar da aka fitar Janairu 11, 2022 ko kuma daga baya, apps waɗanda ke amfani da Tsarin Microsoft .NET don siye ko saita Bayanin Dogara na Active Directory Forest na iya gazawa ko haifar da kuskuren shiga (0xc0000005). Ya bayyana cewa aikace-aikacen da suka dogara da API ɗin System.DirectoryServices abin ya shafa.

Microsoft ya haɓaka wasansa da gaske lokacin da yake tattaunawa gyare-gyare na kwanan nan da sabuntawa don wannan sakin tare da amfani sabunta karin bayanai video.

Manyan bita

Kodayake akwai raguwar jerin faci a wannan watan idan aka kwatanta da Afrilu, Microsoft ya fitar da bita guda uku ciki har da:

• CVE-2022-1096Chromium: CVE-2022-1096 Rudani Nau'in a cikin V8. An sabunta wannan facin na Maris don haɗa da goyan baya ga sabon sigar Kayayyakin Kayayyakin Kayayyakin Kayayyakin Kayayyakin (2022) don ba da damar sabunta ma'anar abun ciki na webview2. Ba a buƙatar ƙarin mataki.
• CVE-2022-24513: Kayayyakin Kayayyakin Kayayyakin Hulɗa na Ƙarfafa Rashin Gata. An sabunta wannan facin na Afrilu don haɗa da DUK nau'ikan da ke goyan bayan Kayayyakin Kayayyakin Kayayyakin Kayayyakin (15.9 zuwa 17.1). Abin takaici, wannan sabuntawar na iya buƙatar wasu gwaje-gwajen aikace-aikace don ƙungiyar haɓaka ku, saboda yana shafar yadda ake samar da abun cikin webview2.
• CVE-2022-30138: Windows Print Spooler Matsayin Gata Mai rauni. Wannan canjin bayanai ne kawai. Ba a buƙatar ƙarin mataki.

Ragewa da warwarewa

A watan Mayu, Microsoft ya buga raguwa guda ɗaya don mummunan raunin tsarin fayil ɗin hanyar sadarwa na Windows:

• CVE-2022-26937: Fayil ɗin Fayil na hanyar sadarwa ta Windows Rashin lahani na Kisa Code. Kuna iya rage harin ta hanyar kashewa NFSV2 da kuma NFSV3. Umurnin PowerShell mai zuwa zai kashe waɗannan nau'ikan: "PS C: Saita-NfsServerConfiguration -EnableNFSV2 $ ƙarya -EnableNFSV3 $ ƙarya." Da zarar an gama. kuna buƙatar sake kunna uwar garken NFS ɗinku (ko zai fi dacewa sake kunna injin ɗin). Kuma don tabbatar da cewa an sabunta uwar garken NFS daidai, yi amfani da umarnin PowerShell "PS C: Get-NfsServerConfiguration."

Kowane wata, muna rarraba tsarin sabuntawa zuwa iyalai na samfur (kamar yadda Microsoft ta ayyana) tare da ƙungiyoyin asali masu zuwa: 

• Masu bincike (Microsoft IE da Edge);
• Microsoft Windows (duka tebur da uwar garken);
• Ofishin Microsoft;
• Musanya Microsoft;
• Dandalin Ci gaban Microsoft ( ASP.NET Core, .NET Core da Chakra Core);
• Adobe (mai ritaya???, watakila shekara mai zuwa).

bincike

Microsoft bai fitar da wani sabuntawa ga ko dai gadonsa (IE) ko Chromium (Edge) masu bincike a wannan watan ba. Muna ganin yanayin koma baya na adadin mahimman batutuwan da suka addabi Microsoft shekaru goma da suka gabata. Ji na shine ƙaura zuwa aikin Chromium ya kasance tabbataccen "super plus-plus win-win" ga ƙungiyar haɓakawa da masu amfani.

Da yake magana game da masu bincike na gado, muna buƙatar shirya don ritaya na IE yana zuwa a tsakiyar watan Yuni. Ta "shirya" ina nufin bikin - bayan, ba shakka, mun tabbatar da wannan gado apps Ba su da takamaiman abin dogaro akan tsohuwar injin ma'anar IE. Da fatan za a ƙara "Bikin yin ritaya na IE" zuwa jadawalin tura burauzar ku. Masu amfani da ku za su fahimta.

Windows

Dandalin Windows yana karɓar sabbin abubuwa shida masu mahimmanci a wannan watan da faci 56 waɗanda aka kimanta mahimmanci. Abin takaici, muna da fa'idodi na kwana uku, kuma:

• CVE-2022-22713: Wannan raunin da aka bayyana a bainar jama'a a cikin dandamalin haɓakawa na Hyper-V na Microsoft zai buƙaci maharin yayi nasarar yin amfani da yanayin tseren cikin gida don haifar da yuwuwar yanayin hana sabis. Yana da muni mai rauni, amma yana buƙatar ɗaure lahani da yawa don yin nasara.
• CVE-2022-26925: Dukansu sun bayyana a bainar jama'a kuma sun ruwaito kamar yadda aka yi amfani da su a cikin daji, wannan Batun tabbatar da LSA damuwa ce ta gaske. Zai zama da sauƙin faci, amma bayanin martabar gwajin yana da girma, yana mai da shi mai wahala don turawa da sauri. Baya ga gwada amincin yankinku, tabbatar da cewa ayyukan wariyar ajiya (da maidowa) suna aiki kamar yadda aka zata. Muna ba da shawarar duba sabbin abubuwa Bayanan tallafi na Microsoft a kan wannan batu mai gudana.
• CVE-2022-29972: Wannan rashin lafiyar da aka bayyana a fili a cikin Jashift ODBC direba yana da takamaiman takamaiman aikace-aikacen Synapse. Amma idan kuna da fallasa ga kowane ɗayan Azure Synapse RBAC Matsayi, tura wannan sabuntawa shine babban fifiko.

Baya ga waɗannan batutuwa na kwana-kwana, akwai wasu batutuwa guda uku waɗanda ke buƙatar kulawar ku:

• CVE-2022-26923: wannan rashin lafiyar a cikin Ingancin Active Directory bai cika ba"maciji"amma yana da sauƙin amfani, ba zan yi mamakin ganin an kai masa hari ba soon. Da zarar an daidaita, wannan raunin zai ba da dama ga duk yankinku. Rikicin yana da yawa tare da wannan.
• CVE-2022-26937: Wannan bug ɗin Tsarin Fayil na hanyar sadarwa yana da ƙimar 9.8 - ɗayan mafi girman rahoton da aka ruwaito a wannan shekara. NFS ba a kunna ta ta tsohuwa ba, amma idan kuna da Linux ko Unix akan hanyar sadarwar ku, wataƙila kuna amfani da shi. Face wannan batu, amma muna kuma ba da shawarar haɓakawa zuwa NFSv4.1 as soon kamar yadda zai yiwu.
• CVE-2022-30138: An fitar da wannan facin bayan ranar Talata. Wannan batu na spooler na bugawa yana rinjayar tsofaffin tsarin (Windows 8 da Server 2012) amma zai buƙaci gwaji mai mahimmanci kafin turawa. Ba batun tsaro ba ne mai matuƙar mahimmanci, amma yuwuwar al'amurran da suka dogara da firinta na da girma. Ɗauki lokacinku kafin tura wannan.

Ganin yawan manyan fa'idodi da kwanaki uku na sifili a cikin Mayu, ƙara sabuntawar Windows na wannan watan zuwa jadawalin “Patch Now” naku.

Microsoft Office

Microsoft ya fitar da sabuntawa guda huɗu kawai don dandamali na Microsoft Office (Excel, SharePoint) waɗanda duk suna da mahimmanci. Duk waɗannan sabuntawa suna da wahala a yi amfani da su (suna buƙatar hulɗar mai amfani da samun damar gida zuwa tsarin manufa) kuma kawai suna shafar dandamali 32-bit. Ƙara waɗannan ƙananan bayanan martaba, sabuntawar ofishi mai ƙarancin haɗari zuwa daidaitaccen jadawalin sakin ku.

Microsoft Exchange Server

Microsoft ya fitar da sabuntawa guda ɗaya zuwa Exchange Server (CVE-2022-21978) wanda ke da mahimmanci kuma yana da wuya a yi amfani da shi. Wannan raunin gata yana buƙatar cikakken ingantacciyar damar shiga uwar garken, kuma ya zuwa yanzu ba a sami rahotannin bayyanawa jama'a ko cin zarafi a cikin daji ba.

Mafi mahimmanci a wannan watan, Microsoft ya gabatar da wani sabon abu hanyar sabunta sabar Microsoft Exchange wanda yanzu ya hada da:

• Fayil ɗin mai saka Windows (.MSP), wanda ke aiki mafi kyau don shigarwa mai sarrafa kansa.
• Cire kai, mai sakawa mai ɗagawa ta atomatik (.exe), wanda ke aiki mafi kyau don shigarwa na hannu.

Wannan yunƙuri ne na warware matsalar masu gudanarwa na Exchange suna sabunta tsarin uwar garken su a cikin mahallin da ba na gudanarwa ba, yana haifar da mummunan yanayin uwar garken. Sabon tsarin EXE yana ba da damar shigar da layin umarni da mafi kyawun shigarwar shigarwa. Microsoft ya buga misalin layin umarni na EXE mai zuwa:

"Setup.exe / IAcceptExchangeServerLicenseSharuɗɗa_DiagnosticDataON/Shirya Duk Domains"

Lura, Microsoft yana ba da shawarar cewa kuna da %Temp% ma'aunin yanayi kafin amfani da sabon tsarin shigarwa na EXE. Idan kun bi sabuwar hanyar amfani da EXE don sabunta Exchange, ku tuna cewa har yanzu kuna da (na daban) tura kowane wata. S.S.U. sabunta don tabbatar da sabobin ku na zamani. Ƙara wannan sabuntawa (ko EXE) zuwa daidaitaccen jadawalin sakin ku, tabbatar da cewa an aiwatar da cikakken sake kunnawa lokacin da aka kammala duk sabuntawa.

Dandalin ci gaban Microsoft

Microsoft ya fitar da sabuntawa guda biyar masu mahimmanci da faci guda ɗaya tare da ƙarancin ƙima. Duk waɗannan facin suna shafar Kayayyakin aikin gani da ido da tsarin NET. Kamar yadda zaku sabunta misalan Kayayyakin Kayayyakin Kayayyakinku don magance waɗannan raunin da aka ruwaito, muna ba da shawarar ku karanta waɗannan abubuwan. Visual Studio Afrilu jagorar sabuntawa.

Don neman ƙarin bayani game da takamaiman batutuwan da aka magance ta fuskar tsaro, da Mayu 2022 NET sabunta rubutun bulogi zai taimaka. Lura da cewa .NET 5.0 yanzu ya kai ƙarshen tallafi kuma kafin ka haɓaka zuwa .NET 7, yana iya zama darajar duba wasu dacewa ko "karya canje-canje” da ya kamata a magance. Ƙara waɗannan sabuntawar matsakaiciyar haɗari zuwa daidaitattun jadawalin ɗaukakawar ku.

Adobe (gaskiya kawai Reader)

Na yi tunanin cewa za mu iya ganin wani Trend. Babu sabunta Adobe Reader na wannan watan. Wannan ya ce, Adobe ya fitar da sabuntawa da yawa ga wasu samfuran da aka samo a nan: Saukewa: ASB22-21. Bari mu ga abin da ya faru a watan Yuni - watakila za mu iya yin ritaya biyu Adobe Reader da IE.