Achọpụtala adịghị ike (CVE-2022-4415) na mpaghara sistemu-coredump, nke na-ahazi faịlụ ndị emepụtara ka emechara ihe mebiri, na-enye onye ọrụ mpaghara na-enweghị ohere ikpebi ọdịnaya ebe nchekwa nke usoro ihe ùgwù na-eji ọkọlọtọ suid. Ekwuputala okwu nhazi ndabara na nkesa openSUSE, Arch, Debian, Fedora na SLES.
A na-akpata adịghị ike ahụ site na enweghị nhazi ziri ezi nke fs.suid_dumpable sysctl parameter na systemd-coredump, nke, mgbe a na-etinye ya na uru ndabara nke 2, na-enye ohere ịmepụta isi ihe maka usoro na ọkọlọtọ suid. Aghọtara na faịlụ bụ isi nke usoro suid nke kernel dere ga-enwerịrị ikike nke edobere iji kwe ka ịgụ ihe naanị site n'aka onye ọrụ mgbọrọgwụ. Utility systemd-coredump, nke kernel na-akpọ iji chekwaa faịlụ ndị bụ isi, na-echekwa faịlụ bụ isi n'okpuru ID mgbọrọgwụ, mana na-enye ohere ịgụ akwụkwọ ACL na isi faịlụ dabere na NJ onye nwe ya bu ụzọ malite usoro ahụ. .
Njirimara a na-enye gị ohere ibudata faịlụ ndị bụ isi n'agbanyeghị eziokwu ahụ bụ na mmemme ahụ nwere ike ịgbanwe ID onye ọrụ wee jiri ikike dị elu rụọ ọrụ. Mwakpo ahụ gbadara n'eziokwu na onye ọrụ nwere ike ịmalite ngwa suid wee ziga ya akara SIGSEGV, wee buo ọdịnaya nke faịlụ bụ isi, nke gụnyere mpempe ebe nchekwa nke usoro ahụ n'oge njedebe na-adịghị mma.
Dịka ọmụmaatụ, onye ọrụ nwere ike ịgba ọsọ "/ usr / bin / su" na njedebe ọzọ kwụsị njedebe ya na iwu "kill -s SIGSEGV `pidof su`", emesia systemd-coredump ga-echekwa isi faịlụ na / var. /lib/systemd/ directory coredump, ịtọ ACL maka ya nke na-enye ohere ịgụ site n'aka onye ọrụ ugbu a. Ebe ọ bụ na suid utility 'su' na-agụ ọdịnaya nke /etc/shadow n'ime ebe nchekwa, onye na-awakpo nwere ike ịnweta ozi gbasara hashes paswọọdụ nke ndị ọrụ niile na sistemụ. Utility sudo enweghị ike ibuso ọgụ, ebe ọ na-amachibido imepụta faịlụ isi site na ulimit.
Dabere na ndị mmepe sistemu, adịghị ike ahụ na-apụta na-amalite site na ntọhapụ sistemu 247 (November 2020), mana dịka onye nyocha nke chọpụtara nsogbu ahụ, a na-emetụtakwa ntọhapụ 246. Ọdịmma ahụ na-apụta ma ọ bụrụ na ejiri ọba akwụkwọ libacl chịkọta sistemu (site na ndabara n'ime ya). nkesa niile na-ewu ewu). Ndozi ahụ dị ugbu a dị ka patch. Ị nwere ike soro ndozi na nkesa na ibe ndị a: Debian, Ubuntu, Gentoo, RHEL, SUSE, Fedora, Gentoo, Arch. Dịka nchekwa nchekwa, ị nwere ike ịtọ sysctl fs.suid_dumpable ka ọ bụrụ 0, nke na-egbochi izipu mkpofu na onye na-ahụ maka sistemu-coredump.
isi: opennet.ru