An gano wani rauni (CVE-2022-1972) a cikin tsarin kernel na Netfilter, kama da matsalar da aka bayyana a ƙarshen Mayu. Sabuwar raunin kuma yana ba da damar mai amfani da gida don samun tushen haƙƙin tsarin ta hanyar yin amfani da dokoki a cikin nftables kuma yana buƙatar samun damar yin amfani da nftables don aiwatar da harin, wanda za'a iya samu a cikin wani sunan daban (sunan cibiyar sadarwa ko sunan mai amfani) tare da CLONE_NEWUSER, CLONE_NEWNS ko CLONE_NEWNET haƙƙoƙin (misali , idan yana yiwuwa a gudanar da keɓaɓɓen akwati).
Matsalar tana faruwa ne ta hanyar kwaro a cikin lambar don sarrafa lissafin saiti tare da filayen da suka haɗa da jeri da yawa, kuma yana haifar da rubutu mara iyaka lokacin sarrafa sigogin jeri na musamman. Masu bincike sun sami damar shirya amfani da aiki don samun tushen haƙƙin a cikin Ubuntu 21.10 tare da kernel 5.13.0-39-generic. Rashin lahani yana bayyana farawa daga kernel 5.6. Ana ba da gyara azaman faci. Don toshe amfani da rauni akan tsarin yau da kullun, yakamata ku tabbatar da kashe ikon ƙirƙirar wuraren suna ga masu amfani marasa gata ("sudo sysctl -w kernel.unprivileged_userns_clone=0").
Bugu da kari, an buga bayanai game da lahanin kwaya guda uku masu alaƙa da tsarin NFC. Lalacewar na iya haifar da faɗuwa ta hanyar ayyukan da wani mara amfani ya yi (har yanzu ba a nuna ƙarin haɗarin harin ba):
- CVE-2022-1734 shine kiran ƙwaƙwalwar ajiya mara amfani bayan mara amfani a cikin direban nfcmrvl (drivers/nfc/nfcmrvl), wanda ke faruwa lokacin da ake yin na'urar NFC a cikin sararin mai amfani.
- CVE-2022-1974 - Kiran ƙwaƙwalwar ajiya da aka riga aka saki yana faruwa a cikin ayyukan netlink don na'urorin NFC (/net/nfc/core.c), wanda ke faruwa lokacin yin rijistar sabuwar na'ura. Kamar raunin da ya gabata, ana iya amfani da matsalar ta hanyar kwaikwayon na'urar NFC a cikin sararin mai amfani.
- CVE-2022-1975 bug ne a cikin lambar shigar da firmware don na'urorin NFC waɗanda za a iya amfani da su don haifar da yanayin "firgita".
source: budenet.ru