N'ime koodu ahụ nwere ntinye ntinye aka nke TPM 2.0 (Trusted Platform Module) nkọwapụta, achọpụtara adịghị ike (CVE-2023-1017, CVE-2023-1018) nke na-eduga na ide ma ọ bụ ịgụ data gafere oke nke nchekwa ekenyela. Mwakpo na mmejuputa cryptoprocessor site na iji koodu adịghị ike nwere ike ibute mmịpụta ma ọ bụ idegharị ozi echekwara na mgbawa dị ka igodo cryptographic. Ikike idegharị data na firmware TPM nwere ike iji onye na-awakpo hazie ogbugbu nke koodu ha na ọnọdụ nke TPM, nke, dịka ọmụmaatụ, enwere ike iji mejuputa azụ azụ na-arụ ọrụ n'akụkụ TPM ma achọpụtaghị ya. site na sistemụ arụmọrụ.
A na-ebute adịghị ike ndị ahụ site na nkwenye na-ezighi ezi nke nha nke parampat nke ọrụ CryptParameterDecryption (), nke na-enye ohere ka e dee ma ọ bụ gụọ bytes abụọ n'ofe oke nke ihe nchekwa ahụ gafere na ọrụ ExecuteCommand () ma nwee iwu TPM2.0. Dabere na mmejuputa firmware ahụ, bytes abụọ a na-edegharị nwere ike imebi ma ebe nchekwa na data na-ejighị ya ma ọ bụ ntụnye dị na nchịkọta.
A na-erigbu adịghị ike ahụ site na izipu iwu ahaziri ahazi na modul TPM (onye na-awakpo ahụ ga-enwerịrị ike ịnweta interface TPM). E doziri okwu ndị a na TPM 2.0 nkọwapụta ewepụtara na Jenụwarị (1.59 Errata 1.4, 1.38 Errata 1.13, 1.16 Errata 1.6).
Ọbá akwụkwọ mepere emepe libtpms, nke ejiri maka iṅomi sọftụwia nke modulu TPM yana ntinye nkwado TPM n'ime hypervisors, dịkwa ngwa ngwa. Edobere adịghị ike ahụ na ntọhapụ libtpms 0.9.6.
isi: opennet.ru