1.修复的CVE
CVE-2021-30535
Google Chrome是美国谷歌(Google)公司的一款Web浏览器。Google Chrome 存在资源管理错误漏洞,该漏洞源于ICU组件内的边界错误。攻击者可利用该漏洞在目标系统上执行任意代码。以下产品及版本受到影响:Google Chrome: 87.0.4280.66, 87.0.4280.141, 88.0.4324.96, 88.0.4324.146, 88.0.4324.150, 88.0.4324.182, 89.0.4389.72, 89.0.4389.90, 89.0.4389.114, 89.0.4389.128, 90.0.4430.72, 90.0.4430.85, 90.0.4430.93, 90.0.4430.212。
银河麒麟桌面操作系统V10 SP1
软件包:icu
66.1-2kylin2.1(V10 SP1)
·银河麒麟桌面操作系统V10 SP1
icu-devtools
icu-doc
libicu-dev
libicu66
打开软件包源配置文件,根据仓库地址进行修改。
4.0.2-sp1:
http://archive.cyjm16888.com/kylin/KYLIN-ALL 4.0.2sp1-desktop main restricted universe multiverse
4.0.2-sp2:
http://archive.cyjm16888.com/kylin/KYLIN-ALL 4.0.2sp2-desktop main restricted universe multiverse
4.0.2-sp3:
http://archive.cyjm16888.com/kylin/KYLIN-ALL 4.0.2sp3-desktop main restricted universe multiverse
4.0.2-sp4:
http://archive.cyjm16888.com/kylin/KYLIN-ALL 4.0.2sp4-desktop main restricted universe multiverse
10.0:
http://archive.cyjm16888.com/kylin/KYLIN-ALL 10.0 main restricted universe multiverse
10.0 SP1:
http://archive.cyjm16888.com/kylin/KYLIN-ALL 10.1 main restricted universe multiverse
配置完成后执行更新命令进行升级
$sudo apt update
通过软件包地址下载软件包,使用软件包升级命令根据受影响的组件包列表 升级相关的组件包。
$dpkg -i Packagelists