A cikin zuciyar Linux An gano raunin da ya shafi guda biyu (CVE-2023-1281 da CVE-2023-1829) waɗanda za su iya ba wa mai amfani na gida damar haɓaka gatansa. Harin yana buƙatar ikon ƙirƙira da gyara masu rarraba zirga-zirga, waɗanda ake samu tare da gata na CAP_NET_ADMIN, wanda za a iya samu ta hanyar ƙirƙirar wuraren suna na mai amfani. Waɗannan matsalolin sun kasance tun daga kernel 4.14 kuma an gyara su a cikin kernel 6.2.
Rashin lafiyar yana faruwa ne sakamakon raunin amfani bayan an yi amfani da shi ba tare da ɓata lokaci ba a cikin lambar rarraba zirga-zirgar tcindex, wanda wani ɓangare ne na tsarin Ingancin Sabis (QoS) na kernel. LinuxRashin lafiyar farko yana faruwa ne saboda yanayin tsere lokacin sabunta matatun hash marasa kyau, kuma na biyu yana faruwa ne lokacin share matatun hash mafi kyau. Kuna iya bin diddigin facin a cikin rarrabawa akan shafuka masu zuwa: Debian, Ubuntu, Gentoo, RHEL, SUSE, Fedora, Gentoo, Arch. Domin hana amfani da raunin, za ku iya kashe ikon ƙirƙirar wuraren suna ga masu amfani marasa gata ("sudo sysctl -w kernel.unprivileged_userns_clone=0").
source: budenet.ru
