Ib qho kev tsis txaus ntseeg tau raug txheeb xyuas hauv swhkd (Simple Wayland HotKey Daemon) tshwm sim los ntawm kev ua haujlwm tsis raug nrog cov ntaub ntawv ib ntus, cov kab lus hais kom ua thiab Unix sockets. Qhov kev zov me nyuam tau sau rau hauv Rust thiab tuav cov xov tooj kub hauv ib puag ncig raws li Wayland raws tu qauv (ib qho kev teeb tsa-cov ntaub ntawv-tshaj analogue ntawm cov txheej txheem sxhkd siv hauv X11-raws li ib puag ncig).
Cov pob suav nrog cov txheej txheem swhks uas tsis tsim nyog uas ua cov haujlwm tseem ceeb, thiab cov txheej txheem tom qab swhkd uas khiav hauv paus thiab cuam tshuam nrog cov khoom siv nkag ntawm qib uinput API. Lub qhov (socket) Unix yog siv los teeb tsa kev sib cuam tshuam ntawm swhks thiab swhkd. Siv cov cai Polkit, txhua tus neeg siv hauv zos tuaj yeem khiav /usr/bin/swhkd txheej txheem raws li hauv paus thiab dhau qhov tsis txaus ntseeg rau nws.
Txheeb xyuas qhov tsis zoo:
- CVE-2022-27815 - Txuag tus txheej txheem PID rau cov ntaub ntawv nrog lub npe uas tuaj yeem kwv yees tau thiab hauv cov npe uas sau tau los ntawm lwm tus neeg siv (/tmp/swhkd.pid). Txhua tus neeg siv tuaj yeem tsim cov ntaub ntawv /tmp/swhkd.pid thiab muab tso rau pid ntawm cov txheej txheem uas twb muaj lawm hauv nws, uas yuav ua rau swhkd tsis tuaj yeem pib. Yog tias tsis muaj kev tiv thaiv kev tsim cov cim txuas hauv / tmp, qhov muaj qhov tsis zoo tuaj yeem siv los tsim lossis sau cov ntaub ntawv hauv txhua qhov system directory (PID yog sau rau hauv cov ntaub ntawv) lossis txiav txim siab cov ntsiab lus ntawm cov ntaub ntawv ntawm lub system (swhkd prints the tag nrho cov ntsiab lus ntawm PID cov ntaub ntawv rau stdout). Nws yog noteworthy tias nyob rau hauv tso tawm kho cov ntaub ntawv PID tau tsiv tsis mus rau lub /run directory, tab sis mus rau /etc directory (/etc/swhkd/runtime/swhkd_{uid}.pid), qhov twg nws kuj tsis koom.
- CVE-2022-27814 - Los ntawm kev tswj cov kab lus "-c" kev xaiv siv los txheeb xyuas cov ntaub ntawv teeb tsa, nws tuaj yeem txiav txim siab qhov muaj nyob ntawm cov ntaub ntawv hauv lub cev. Piv txwv li, txhawm rau txheeb xyuas /root/.somefile koj tuaj yeem khiav "pkexec /usr/bin/swhkd -d -c /root/.somefile" thiab yog tias cov ntaub ntawv ploj lawm, qhov yuam kev "/root/.somefile tsis muaj nyob. β yuav tshwm sim. Raws li nyob rau hauv cov ntaub ntawv ntawm thawj qhov yooj yim, kho qhov teeb meem yog puzzling - kho qhov teeb meem boils mus rau qhov tseeb hais tias lub sab nraud nqi hluav taws xob "miv" ('Command::new("/bin/cat")).arg(path) yog tam sim no launched los nyeem cov configuration file. output()').
- CVE-2022-27819 - Qhov teeb meem tseem cuam tshuam nrog kev siv "-c" kev xaiv, uas ua rau tag nrho cov ntaub ntawv teeb tsa raug thauj khoom thiab cais yam tsis tau kuaj xyuas qhov loj thiab hom ntawm cov ntaub ntawv. Piv txwv li, txhawm rau ua rau muaj kev tsis lees paub kev pabcuam los ntawm kev khiav tawm ntawm lub cim xeeb dawb thiab tsim kom muaj I / O spurious, koj tuaj yeem hais qhia lub cuab yeej thaiv thaum pib ("pkexec / usr / bin / swhkd -d -c / dev / sda") lossis ib tug cim ntaus ntawv uas tsim ib tug infinite kwj ntawm cov ntaub ntawv. Qhov teeb meem tau daws los ntawm kev rov pib dua cov cai ua ntej qhib cov ntaub ntawv, tab sis kev kho tsis tiav, vim tsuas yog tus neeg siv ID (UID) rov pib dua, tab sis pawg ID (GID) tseem zoo li qub.
- CVE-2022-27818 - Ib lub qhov (socket) Unix yog tsim los siv /tmp/swhkd.sock cov ntaub ntawv tsim nyob rau hauv ib phau ntawv sau tau, uas ua rau muaj teeb meem zoo sib xws li thawj qhov tsis zoo (txhua tus neeg siv tuaj yeem tsim /tmp/swhkd.sock thiab tsim lossis cuam tshuam. keypress events).
- CVE-2022-27817 - Cov txheej xwm tawm tswv yim tau txais los ntawm txhua yam khoom siv thiab hauv txhua ntu, piv txwv li. tus neeg siv los ntawm lwm qhov kev sib tham Wayland lossis los ntawm lub console tuaj yeem cuam tshuam cov xwm txheej thaum hotkeys raug nias los ntawm lwm tus neeg siv.
- CVE-2022-27816 Cov txheej txheem swhks, zoo li swhkd, siv PID cov ntaub ntawv /tmp/swhks.pid hauv cov ntawv sau tau /tmp. Qhov teeb meem zoo ib yam li thawj qhov muaj qhov tsis zoo, tab sis tsis yog qhov txaus ntshai vim tias swhks tab tom khiav hauv qab tus neeg siv tsis muaj cai.
Tau qhov twg los: opennet.ru