Tutorial

Maitiro ekuisa Magento 2 Security Patch PRODSECBUG-2198

magento patches

Iyo 26 Kurume 2019, Magento aburitsa PRODSECBUG-2198 patch yekuchengetedza yekugadzirisa kusakwana kweSQL. Nekuda kwekusagadzikana uku, mushandisi akasarudzika anogona kuendesa SQL kodhi, nekukanganisika kurasikirwa kwe data rakadzama. Isu tinokurudzira kuti uise aya matete azere nekukurumidza.

  • PRODSECBUG-2198 Ruzivo
  • CVSSv3 Severity: 9 (Inorasika)
  • Kuzivikanwa kurwiswa: hapana
  • Tsanangudzo: mushandisi akasarudzika anogona kuita zvekupokana kodhi kuburikidza ne SQL kusagadzikana, izvo zvinokonzeresa kurasikirwa kwe data rakadzama.
  • Yakakanganiswa chigadzirwa: Magento Open Source pre-1.9.4.1 uye Magento Commerce isati yasvika 1.14.4.1, Magento 2.1 isati ya 2.1.17, Magento 2.2 isati yasvika 2.2.8, Magento 2.3 isati yasvika 2.3.1
  • Yakagadziriswa mukati: Magento Open Open 1.9.4.1, Magento Commerce 1.14.4.1, SUPEE-11086, Magento 2.1.17, Magento 2.2.8, Magento 2.3.1
  • Mutori wenhau: cfreal
 
Unogona zvakare kuda: Gwara rakakwana rekugadzirisa zvakapetwa zviri muMagento
 
Kuisa PRODSECBUG-2198 chigamba, ingo mhanya unoteedzera 6 makona:

  • Backup yako Magento-yakavakirwa ecommerce: Iyo nhanho yekuchenjera yekutsigira Magento Chitoro usati waisa chero chengetedzo nekuti chitoro chako chingangopesana nePatch mafaera;
  • Dhawunirodha chigamba kubva kunzvimbo yeMagento: Dhawunirodha PRODSECBUG-2198 chigamba kubva qui, uchisarudza iyo vhezheni yakakodzera yeyako yeMagento chitoro uye chiise iyo kuMagento midzi yako.
  • Nyorera chigamba: Svika sevha kuburikidza necrob (ssh) uye pinda iyo midzi dhairekitori. Mhanya unotevera kuraira:
    • bash Patch zita
  • Bvisa yako Magento Cache: Tinokurudzira kuchenesa iyo Magento cache mushure mekushandisa chigamba. Unogona kujekesa uye kujekesa iyo Magento admin cache kana kuita zvinotevera SSH mirairo:
    • php bin / magento cache: kusheedzera
    • php bin / magento cache: yakachena
  • Simbisa kuisirwa chigambaMhanya unotevera kuraira kuti uzive kana chigamba chakaiswa mushe:
    • grep '| Anwendung / nezvimwewo / applied.patches.lis
  • Bvisa iyo Patch faira: Mushure mekubudirira chigamba kuisirwa, unogona kubvisa .patch faira kubva kuMagento mudzi. Mhanya unotevera kuraira kuti ubvise uchishandisa SSH:
    • rm Patch zita
  •  
Unogona zvakare kuda: Maitiro ekugadzirisa sei kupinda kwekumanikidzwa kwemunda weMagento 2 com munda
 
Funga izvozvo:

Iine nzira iri pamusoro apa muMagento 2.2 CE shanduro iwe unogona kunge uine kukanganisa nenzira inotevera:

sh PRODSECBUG-2198-2.2-CE.composer-2019-03-27-06-12-19.patch
mutsa: sarudzo haina kunozivikanwa "-git"
diff: edza “dis -help” kuti uwane rumwe ruzivo.
PRODSECBUG-2198-2.2-CE.composer-2019-03-27-06-12-19.patch: mutsara 2: index: command haina kuwanikwa
PRODSECBUG-2198-2.2-CE.composer-2019-03-27-06-12-19.patch: mutsara 3: -: command haina kuwanikwa

Innovation newsletter
Usarasikirwa nenhau dzakanyanya kukosha dzekuvandudza. Nyora kuti uvagamuchire neemail.

Kuti udzivise kukanganisa uku, tevera matanho ari pasi apa.

  • Kana uchishandisa git:
    git apply PRODSECBUG-2198-2.2-CE.composer-2019-03-27-06-12-19.patch
  • shandisa chigamba
    Bvisa a / eb / pamberi penzira.
    Fambisa iyo chigamba faira kuMagento midzi uye unomhanya iyo patch -p0 <PRODSECBUG-2198-2.2-CE.composer-2019-03-27-06-12-19.patch


Ercole Palmeri

Yechinguva Innovation Manager

Innovation newsletter
Usarasikirwa nenhau dzakanyanya kukosha dzekuvandudza. Nyora kuti uvagamuchire neemail.
Tags: 2 magento
3 Gunyana 2019 7:10pm

Zvinyorwa zvekare

UK antitrust regulator inosimudza BigTech alarm pamusoro peGenAI

Iyo UK CMA yakapa yambiro nezvemaitiro eBig Tech mumusika wehungwaru hwekugadzira. Ikoko…

18 April 2024

Casa Green: shanduko yesimba kune ramangwana rakagadzikana muItari

Chirevo che "Case Green", chakagadzirwa neEuropean Union kuti chiwedzere kushanda nesimba kwezvivakwa, chapedza hurongwa hwayo hwemutemo ne…

18 April 2024

Ecommerce muItari pa + 27% maererano neChirevo chitsva naCasaleggio Associati

Casaleggio Associati mushumo wepagore weEcommerce muItaly wakapihwa. Chirevo chine musoro unoti "AI-Commerce: miganhu yeEcommerce neArtificial Intelligence".…

17 April 2024

Yakanaka Idea: Bandalux inopa Airpure®, keteni rinochenesa mweya

Mhedzisiro yenguva dzose yekuvandudza tekinoroji uye kuzvipira kune zvakatipoteredza uye kugara zvakanaka kwevanhu. Bandalux inopa Airpure®, tende…

12 April 2024

Verenga Innovation mumutauro wako

Innovation newsletter
Usarasikirwa nenhau dzakanyanya kukosha dzekuvandudza. Nyora kuti uvagamuchire neemail.

kutitevera

Zvinyorwa zvekare

Tag

gupuro cyber attack blockchain chatbot chat gpt gore gore kadambari Content Marketing cyber attack cyber kuchengetedzwa kodzero yevatengi ecommerce Eniasi chiitiko chekuvandudza gianfranco fedele google kuchinja utsanzi mari innovation kuwedzera kwebasa kuvandudzwa kwezvokurapa innovation sustainability Tekinoroji nyowani kungwara kwekunyepedzera IOT Machine Learning metaverse Microsoft nft Hapana Munhu muLoop PHP pindura Robotics seo SERP Software software dhizaini software development Software Engineering kuenderera tanga thales Tutorial Vpn web3