ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Vulnerability nyob rau hauv Linux 6.2 kernel uas tuaj yeem hla Spectre v2 nres tiv thaiv

Vulnerability nyob rau hauv Linux 6.2 kernel uas tuaj yeem hla Spectre v2 nres tiv thaiv

Qhov tsis zoo (CVE-6.2-2023) tau raug txheeb xyuas hauv Linux ntsiav 1998, uas cuam tshuam kev tiv thaiv Spectre v2 tawm tsam, uas tso cai rau nkag mus rau lub cim xeeb ntawm lwm cov txheej txheem khiav hauv SMT lossis Hyper Threading threads sib txawv, tab sis ntawm tib lub cev processor. tub ntxhais. Qhov tsis zoo, ntawm lwm yam, tuaj yeem siv los ua cov ntaub ntawv tawm ntawm cov tshuab virtual hauv huab cua. Qhov teeb meem cuam tshuam tsuas yog Linux 6.2 kernel thiab yog tshwm sim los ntawm kev siv tsis raug ntawm kev ua kom zoo tsim los txo qhov tseem ceeb ntawm kev siv Spectre v2 tiv thaiv. Qhov tsis zoo tau raug kho nyob rau hauv kev sim ceg ntawm Linux 6.3 kernel.

Hauv cov neeg siv qhov chaw, los tiv thaiv Spectre tawm tsam, cov txheej txheem tuaj yeem xaiv lov tes taw kev ua tiav ntawm cov lus qhia siv prctl PR_SET_SPECULATION_CTRL lossis siv qhov system hu filtering raws li lub tshuab seccomp. Raws li cov kws tshawb fawb uas tau txheeb xyuas qhov teeb meem, kev ua kom zoo tsis raug hauv cov ntsiav 6.2 sab laug lub tshuab virtual ntawm tsawg kawg ib tus neeg muab kev pabcuam huab tsis muaj kev tiv thaiv zoo, txawm hais tias suav nrog spectre-BTI nres thaiv hom ntawm prctl. Qhov tsis zoo kuj tshwm sim ntawm cov servers niaj hnub nrog cov ntsiav 6.2, thaum thauj lawv "spectre_v2=ibrs" teeb tsa siv.

Lub ntsiab lus ntawm qhov tsis zoo yog tias thaum xaiv IBRS lossis eIBRS kev tiv thaiv hom, qhov kev ua kom zoo tshaj plaws tau cuam tshuam kev siv STIBP (Single Thread Indirect Branch Predictors) mechanism, uas yog tsim nyog los thaiv cov xau thaum siv tib lub sijhawm multithreading technology (SMT lossis Hyper- Xov). Txawm li cas los xij, tsuas yog hom eIBRS tsuas yog muab kev tiv thaiv tawm ntawm cov xov, tab sis tsis yog IBRS hom, txij li qhov no IBRS me ntsis, uas muab kev tiv thaiv tawm tsam ntawm cov cores logical, raug tshem tawm rau kev ua haujlwm vim li cas thaum tswj rov qab mus rau qhov chaw siv, uas ua rau threads hauv cov neeg siv qhov chaw tsis tiv thaiv los ntawm Spectre v2 tawm tsam.

Tau qhov twg los: opennet.ru

Ntxiv ib saib