An shirya sakin gyara na kunshin Samba 4.14.4, 4.13.8 da 4.12.15 don kawar da raunin (CVE-2021-20254), wanda a mafi yawan lokuta na iya haifar da faɗuwar tsarin smbd, amma a cikin mafi muni. yanayin yanayin yuwuwar samun dama ga fayiloli mara izini da share fayiloli akan ɓangaren cibiyar sadarwa ta mai amfani mara amfani.
Lalacewar ta faru ne saboda kuskure a cikin sids_to_unixids() aikin da ke sa a karanta bayanai daga wani yanki da ke waje da kan iyaka lokacin da ake canza SIDs (Mai gano Tsaron Windows) zuwa GID (Unix Group ID). Matsalar tana faruwa lokacin da aka ƙara wani abu mara kyau zuwa SID zuwa cache taswirar GID. Masu haɓaka Samba sun kasa gano abin dogaro kuma ana iya maimaita yanayi don raunin da ya faru, amma mai binciken da ya gano raunin ya yi imanin cewa za a iya amfani da matsalar don share fayiloli akan sabar fayil ba tare da haƙƙin da suka dace don yin wannan aikin ba.
source: budenet.ru