QNAP¤Ë½ÅÍפÊÀȼåÀ¡¢°ì»þŪ¤ËAFP¤Î̵¸ú²½¤ò¸Æ¤Ó¤«¤±
QNAP Systems¤Ï4·î25Æü(Êƹñ»þ´Ö)¡¢¡ÖMultiple Vulnerabilities in Netatalk - Security Advisory¡ÃQNAP¡×¤Ë¤ª¤¤¤Æ¡¢QNAP¤ÎÊ£¿ô¤Î¥×¥í¥À¥¯¥È¤ËÊ£¿ô¤ÎÀȼåÀ¤¬Â¸ºß¤¹¤ë¤ÈÅÁ¤¨¤¿¡£¤³¤ÎÀȼåÀ¤Ï¸½ºß½¤ÀµÃæ¡ÊFixing¡Ë¤È¤µ¤ì¤Æ¤¤¤ë¡£³ºÅö¤¹¤ë¥×¥í¥À¥¯¥È¤ò»È¤Ã¤Æ¤¤¤ë¤«¤É¤¦¤«¤ò³Îǧ¤¹¤ë¤È¤È¤â¤Ë¡¢À½Éʤò»È¤Ã¤Æ¤¤¤ë¾ì¹ç¤ÏÀâÌÀ¤µ¤ì¤Æ¤¤¤ëÆâÍƤ˽¾¤Ã¤ÆÂн褹¤ë¤³¤È¤¬Ë¾¤Þ¤ì¤ë¡£
Multiple Vulnerabilities in Netatalk - Security Advisory¡ÃQNAP
¤³¤ÎÀȼåÀ¤Ï¡¢Netatalk¤ÎÀȼåÀ¤Î±Æ¶Á¤Ë¤è¤ë¤â¤Î¡£Netatalk³«È¯¥Á¡¼¥à¤ÏÀȼåÀ¤ò½¤Àµ¤·¤¿Netatalk 3.1.13¤ò¸ø³«¤·¤Æ¤ª¤ê¡¢¤³¤Î¥Ð¡¼¥¸¥ç¥ó¤Ç½¤Àµ¤µ¤ì¤¿ÀȼåÀ¤¬QNAPÀ½Éʤˤ⸺ߤ¹¤ë¤È¹Í¤¨¤é¤ì¤Æ¤¤¤ë¡£
ÀȼåÀ¤¬Â¸ºß¤¹¤ë¤È¤µ¤ì¤ë¥×¥í¥À¥¯¥È¤ª¤è¤Ó¥Ð¡¼¥¸¥ç¥ó¤Ï¼¡¤Î¤È¤ª¤ê¡£
QTS 5.0.x¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.5.4¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.3.6¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.3.4¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.3.3¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.2.6¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QuTS hero h5.0.x¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QuTS hero h4.5.4¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QuTScloud c5.0.x
ÀȼåÀ¤¬½¤Àµ¤µ¤ì¤¿¥×¥í¥À¥¯¥È¤ª¤è¤Ó¥Ð¡¼¥¸¥ç¥ó¤Ï¼¡¤Î¤È¤ª¤ê¡£
QTS 4.5.4.2012 build 20220419¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
½¤ÀµÂоݤȤʤäƤ¤¤ëÀȼåÀ¤Ë´Ø¤¹¤ë¾ðÊó¡ÊCVE¡Ë¤Ï¼¡¤Î¤È¤ª¤ê¡£
CVE-2021-31439
CVE-2022-23121
CVE-2022-23123
CVE-2022-23122
CVE-2022-23125
CVE-2022-23124
CVE-2022-0194
QNAP¤Ï¤³¤ÎÀȼåÀ¤Î±Æ¶Á¤òÄ㸺¤¹¤ë¤¿¤á¤Ë¡¢¼¡¤ÎÂбþ¤ò¼è¤ë¤³¤È¤ò¿ä¾©¤·¤Æ¤¤¤ë¡£
AFP¤ò̵¸ú²½¤¹¤ë¡£¥¢¥Ã¥×¥Ç¡¼¥È¤¬Ä󶡤µ¤ì¤¿¤é¥¢¥Ã¥×¥Ç¡¼¥È¤òŬÍѤ·¤¿¤Î¤ÁAFP¤òºÆÅÙ͸ú²½¤¹¤ë
½¤ÀµÂоݤȤʤäƤ¤¤ëÀȼåÀ¤ÏCVE¤ÎÆÃÄê¤Ç7¤Ä¤Ç¡¢¿¼¹ïÅ٤ϽÅÍסÊHigh¡Ë¤È¤µ¤ì¤Æ¤¤¤ë¤³¤È¤«¤éÃí°Õ¤¬É¬Íס£Ä󶡤µ¤ì¤Æ¤¤¤ë¾ðÊó¤Ë½¾¤Ã¤Æ¿×®¤ËÂбþ¤¹¤ë¤È¤È¤â¤Ë¡¢QNAP¤«¤éÄ󶡤µ¤ì¤ë¥»¥¥å¥ê¥Æ¥£¾ðÊó¤Ë¹ç¤ï¤»¤ÆÂн褹¤ë¤³¤È¤¬Ë¾¤Þ¤ì¤ë¡£
¤³¤ÎÀȼåÀ¤Ï¡¢Netatalk¤ÎÀȼåÀ¤Î±Æ¶Á¤Ë¤è¤ë¤â¤Î¡£Netatalk³«È¯¥Á¡¼¥à¤ÏÀȼåÀ¤ò½¤Àµ¤·¤¿Netatalk 3.1.13¤ò¸ø³«¤·¤Æ¤ª¤ê¡¢¤³¤Î¥Ð¡¼¥¸¥ç¥ó¤Ç½¤Àµ¤µ¤ì¤¿ÀȼåÀ¤¬QNAPÀ½Éʤˤ⸺ߤ¹¤ë¤È¹Í¤¨¤é¤ì¤Æ¤¤¤ë¡£
ÀȼåÀ¤¬Â¸ºß¤¹¤ë¤È¤µ¤ì¤ë¥×¥í¥À¥¯¥È¤ª¤è¤Ó¥Ð¡¼¥¸¥ç¥ó¤Ï¼¡¤Î¤È¤ª¤ê¡£
QTS 5.0.x¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.5.4¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.3.6¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.3.4¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.3.3¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QTS 4.2.6¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QuTS hero h5.0.x¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QuTS hero h4.5.4¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
QuTScloud c5.0.x
ÀȼåÀ¤¬½¤Àµ¤µ¤ì¤¿¥×¥í¥À¥¯¥È¤ª¤è¤Ó¥Ð¡¼¥¸¥ç¥ó¤Ï¼¡¤Î¤È¤ª¤ê¡£
QTS 4.5.4.2012 build 20220419¤ª¤è¤Ó¤³¤ì°Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó
½¤ÀµÂоݤȤʤäƤ¤¤ëÀȼåÀ¤Ë´Ø¤¹¤ë¾ðÊó¡ÊCVE¡Ë¤Ï¼¡¤Î¤È¤ª¤ê¡£
CVE-2021-31439
CVE-2022-23121
CVE-2022-23123
CVE-2022-23122
CVE-2022-23125
CVE-2022-23124
CVE-2022-0194
QNAP¤Ï¤³¤ÎÀȼåÀ¤Î±Æ¶Á¤òÄ㸺¤¹¤ë¤¿¤á¤Ë¡¢¼¡¤ÎÂбþ¤ò¼è¤ë¤³¤È¤ò¿ä¾©¤·¤Æ¤¤¤ë¡£
AFP¤ò̵¸ú²½¤¹¤ë¡£¥¢¥Ã¥×¥Ç¡¼¥È¤¬Ä󶡤µ¤ì¤¿¤é¥¢¥Ã¥×¥Ç¡¼¥È¤òŬÍѤ·¤¿¤Î¤ÁAFP¤òºÆÅÙ͸ú²½¤¹¤ë
½¤ÀµÂоݤȤʤäƤ¤¤ëÀȼåÀ¤ÏCVE¤ÎÆÃÄê¤Ç7¤Ä¤Ç¡¢¿¼¹ïÅ٤ϽÅÍסÊHigh¡Ë¤È¤µ¤ì¤Æ¤¤¤ë¤³¤È¤«¤éÃí°Õ¤¬É¬Íס£Ä󶡤µ¤ì¤Æ¤¤¤ë¾ðÊó¤Ë½¾¤Ã¤Æ¿×®¤ËÂбþ¤¹¤ë¤È¤È¤â¤Ë¡¢QNAP¤«¤éÄ󶡤µ¤ì¤ë¥»¥¥å¥ê¥Æ¥£¾ðÊó¤Ë¹ç¤ï¤»¤ÆÂн褹¤ë¤³¤È¤¬Ë¾¤Þ¤ì¤ë¡£