An bayyana bayanai game da raunin CVE-2023-6200) a cikin tarin cibiyar sadarwar kernel na Linux, wanda, a wasu yanayi, yana ba da damar maharan daga cibiyar sadarwar gida don cimma nasarar aiwatar da lambar sa ta hanyar aika fakitin ICMPv6 na musamman da aka tsara tare da. saƙon RA (Router Advertisement) wanda aka yi niyya don tallata bayanai game da na'ura mai ba da hanya tsakanin hanyoyin sadarwa.
Za'a iya amfani da raunin kawai daga cibiyar sadarwar gida kuma yana bayyana akan tsarin tare da goyon bayan IPv6 da kuma ma'aunin sysctl "net.ipv6.conf.<network_interface_name>.accept_ra" aiki (ana iya dubawa tare da umurnin "sysctl net.ipv6.conf". | grep accept_ra"), wanda aka kashe ta tsohuwa a cikin RHEL da Ubuntu don hanyoyin sadarwa na waje, amma an kunna shi don ƙirar madauki, wanda ke ba da damar hari daga tsarin iri ɗaya.
Rashin lafiyar yana haifar da yanayin tsere lokacin da mai tattara shara yana aiwatar da bayanan fib6_info, wanda zai iya kaiwa ga samun damar zuwa wurin ƙwaƙwalwar ajiya da aka riga aka 'yanta (amfani bayan-free). Lokacin karɓar fakitin ICMPv6 tare da saƙon tallan na'ura mai ba da hanya tsakanin hanyoyin sadarwa (RA, Tallace-tallacen na'ura mai ba da hanya tsakanin hanyoyin sadarwa), tari na cibiyar sadarwa yana kiran aikin ndisc_router_discovery (), wanda, idan saƙon RA ya ƙunshi bayani game da hanyar rayuwa, yana kiran aikin fib6_set_expires () kuma ya cika gc_link. tsari. Don tsaftace shigarwar da ba a daɗe ba, yi amfani da aikin fib6_clean_expires(), wanda ke raba shigarwar gc_link kuma yana share ƙwaƙwalwar ajiyar da tsarin fib6_info ke amfani da shi. A wannan yanayin, akwai wani lokaci lokacin da ƙwaƙwalwar ajiyar tsarin fib6_info ya riga ya 'yantar, amma hanyar haɗin kai ta ci gaba da kasancewa a cikin tsarin gc_link.
Rashin lahani ya bayyana yana farawa daga reshe 6.6 kuma an daidaita shi a cikin nau'ikan 6.6.9 da 6.7. Ana iya kimanta matsayin daidaita yanayin rashin ƙarfi a cikin rarrabawa akan waɗannan shafuka: Debian, Ubuntu, SUSE, RHEL, Fedora, Arch Linux, Gentoo, Slackware. Daga cikin rarrabawar da ke jigilar kaya tare da kwaya na 6.6, zamu iya lura da Arch Linux, Gentoo, Fedora, Slackware, OpenMandriva da Manjaro; a cikin sauran rarrabawa, yana yiwuwa canjin tare da kuskure ya koma cikin fakiti tare da tsofaffin rassan kernel (don Misali, a cikin Debian an ambaci cewa kunshin tare da kernel 6.5.13 yana da rauni, yayin da canjin matsala ya bayyana a reshen 6.6). A matsayin tsarin tsaro, zaku iya kashe IPv6 ko saita sigogin "net.ipv0.conf.*.accept_ra" zuwa 6.
source: budenet.ru