A cikin Na'urar Kebul, tsarin kernel yana da alaƙa da tsarin kernel. LinuxAn gano rauni (CVE-2021-39685) a cikin USB Gadget API, wanda ke ba da hanyar haɗin software don ƙirƙirar na'urorin USB na abokin ciniki da kuma kwaikwayon na'urorin USB. Wannan rauni na iya haifar da ɓullar bayanai na kernel, faɗuwa, ko aiwatar da lambar ba bisa ƙa'ida ba a matakin kernel. Mai amfani da gida mara gata ne ke gudanar da harin ta hanyar sarrafa nau'ikan na'urori daban-daban da aka aiwatar ta amfani da USB Gadget API, kamar rndis, hid, uac1, uac1_legacy, da uac2.
An gyara matsalar a cikin sabuntawar kernel da aka buga kwanan nan. Linux 5.15.8, 5.10.85, 5.4.165, 4.19.221, 4.14.258, 4.9.293 da 4.4.295. Matsalar har yanzu ba a warware ta ba a cikin rarrabawar (Debian, Ubuntu, RHEL, SUSE, Fedora, Arch). An shirya wani samfurin amfani da kwamfuta don nuna raunin da ke tattare da shi.
Matsalar ta samo asali ne sakamakon cikar buffer a cikin masu gudanar da buƙatun canja wurin bayanai na rndis, ɓoye, uac1, uac1_legacy, da direbobin na'urar uac2. Ta hanyar yin amfani da wannan raunin, maharin mara gata zai iya samun damar ƙwaƙwalwar ƙwayar cuta ta hanyar aika buƙatun sarrafawa ta musamman tare da ƙimar filin wLength wanda ya zarce girman ma'auni, wanda koyaushe ana keɓe shi zuwa 4096 bytes (USB_COMP_EP0_BUFSIZ). Wannan harin yana ba da damar tsarin sararin mai amfani mara gata don karantawa ko rubuta har zuwa 65 KB na bayanai zuwa ƙwaƙwalwar kernel.
source: budenet.ru
