An gano wani rauni (CVE-5.1-2022) a cikin aiwatar da io_uring asynchronous shigar da / fitarwa dubawa, wanda aka haɗa a cikin Linux kernel tun lokacin da aka saki 2602, wanda ke ba da damar mai amfani mara amfani don samun haƙƙin tushen a cikin tsarin. An tabbatar da matsalar a reshe 5.4 da kernels tun reshe na 5.15.
Rashin lahani yana faruwa ne ta hanyar toshe ƙwaƙwalwar ajiya mara amfani a cikin tsarin io_uring, wanda ke faruwa a sakamakon yanayin tsere yayin aiwatar da buƙatun io_uring akan fayil ɗin da aka yi niyya yayin tattara shara don soket ɗin Unix, idan mai tara shara ya 'yantar da duk rajista. masu bayanin fayil da mai bayanin fayil wanda io_uring ke aiki dashi. Don ƙirƙirar yanayi ta wucin gadi don raunin bayyanar da kansa, zaku iya jinkirta buƙatar ta amfani da userfaultfd har sai mai tara shara ya saki ƙwaƙwalwar ajiya.
Masu binciken da suka gano matsalar sun sanar da kirkiro wani amfani mai aiki, wanda suke da niyyar bugawa a ranar 25 ga Oktoba don baiwa masu amfani da lokaci don shigar da sabuntawa. Gyaran yana samuwa a yanzu azaman faci. Har yanzu ba a fitar da sabuntawa don rarrabawa ba, amma kuna iya bin diddigin samuwarsu akan shafuka masu zuwa: Debian, Ubuntu, Gentoo, RHEL, Fedora, SUSE/openSUSE, Arch.
source: budenet.ru