Qhov tsis zoo (CVE-2022-2590) tau raug txheeb xyuas nyob rau hauv Linux ntsiav, uas tso cai rau tus neeg siv tsis tau txais txiaj ntsig los hloov cov ntaub ntawv nco-mapped (mmap) thiab cov ntaub ntawv hauv tmpfs yam tsis tau sau txoj cai rau lawv, thiab txhawb nqa lawv cov cai hauv lub cev. . Qhov teeb meem pom tau zoo ib yam li hom Dirty COW vulnerability, tab sis txawv ntawm qhov nws tsuas yog txwv rau qhov cuam tshuam rau cov ntaub ntawv hauv kev sib koom nco (shmem / tmpfs). Qhov teeb meem kuj tuaj yeem siv los hloov kho cov ntaub ntawv ua tiav uas siv cov cim xeeb sib koom.
Qhov teeb meem yog tshwm sim los ntawm kev sib tw hauv lub cim xeeb tswj subsystem uas tshwm sim thaum tuav qhov kev zam (fault) pov tseg thaum sim sau ntawv nkag mus rau qhov chaw nyeem nkaus xwb hauv kev sib koom nco tau xav hauv COW (copy-on-write mapping) hom. Qhov teeb meem tshwm sim pib ntawm kernel 5.16 ntawm cov tshuab nrog x86-64 thiab aarch64 architecture thaum tsim lub kernel nrog CONFIG_USERFAULTFD = y kev xaiv. Qhov tsis zoo tau raug kho hauv kev tso tawm 5.19. Ib qho piv txwv ntawm kev siv dag zog tau npaj yuav tshaj tawm rau lub Yim Hli 15.
Tau qhov twg los: opennet.ru