Qhov tsis zoo (CVE-2022-3977) tau raug txheeb xyuas nyob rau hauv Linux ntsiav, uas tuaj yeem siv los ntawm ib tus neeg siv hauv zos kom nce lawv cov cai hauv lub cev. Qhov tsis zoo tshwm sim pib ntawm kernel 5.18 thiab tau kho hauv ceg 6.1. Cov tsos ntawm kev txhim kho hauv kev faib khoom tuaj yeem taug qab ntawm nplooj ntawv: Debian, Ubuntu, Gentoo, RHEL, SUSE, Arch.
Qhov tsis zoo yog tam sim no nyob rau hauv kev ua raws li MCTP (Management Component Transport Protocol) raws tu qauv, siv rau kev sib cuam tshuam ntawm cov tswj tswj thiab cov khoom siv cuam tshuam. Qhov tsis zoo yog tshwm sim los ntawm kev sib tw hauv mctp_sk_unhash() muaj nuj nqi, uas ua rau kev siv-tom qab-dawb nco nkag thaum xa DROPTAG ioctl thov ib txhij nrog kaw lub qhov (socket).
Tau qhov twg los: opennet.ru