Achọpụtala adịghị ike (CVE-2022-42896) na Linux kernel, nke enwere ike iji hazie mkpochapụ koodu dịpụrụ adịpụ na ọkwa kernel site na izipu ngwugwu L2CAP ahaziri ahazi site na Bluetooth. Na mgbakwunye, a chọpụtala okwu ọzọ yiri nke ahụ (CVE-2022-42895) na onye na-ahụ maka L2CAP, nke nwere ike iduga nkwụsị nke ọdịnaya ebe nchekwa kernel na ngwugwu nwere ozi nhazi. Ihe ọghọm nke mbụ na-apụta kemgbe Ọgọst 2014 (kernel 3.16), na nke abụọ kemgbe Ọktoba 2011 (kernel 3.0). A kọwawo ihe ọghọm ndị ahụ na mwepụta kernel Linux 6.1.0, 6.0.8, 4.9.333, 4.14.299, 4.19.265, 5.4.224, 5.10.154, na 5.15.78. Ị nwere ike soro ndozi na nkesa na ibe ndị a: Debian, Ubuntu, Gentoo, RHEL, SUSE, Fedora, Arch.
Iji gosi na enwere ike ibuso ọgụ dịpụrụ adịpụ, ebipụtala ụdị mkparị na-arụ ọrụ na Ubuntu 22.04. Iji mee mbuso agha, onye na-awakpo ahụ ga-anọrịrị n'ime oke Bluetooth-ọchọghị ijikọ ụzọ, mana Bluetooth ga-arụ ọrụ na kọmpụta. Maka mbuso agha, o zuru ezu ịmara adreesị MAC nke ngwaọrụ onye ahụ, nke enwere ike ikpebi site na imi ma ọ bụ, na ngwaọrụ ụfọdụ, gbakọọ dabere na adreesị Wi-Fi MAC.
Ihe ọghọm nke mbụ (CVE-2022-42896) kpatara site na ịnweta mpaghara ebe nchekwa ahapụlarị (eji-enweghị n'efu) na mmejuputa ọrụ l2cap_connect na l2cap_le_connect_req - mgbe ịmepụtara ọwa site na oku oku ọhụrụ_connection, edobeghị mkpọchi. maka ya, mana edobere oge (__set_chan_timer), na njedebe nke oge, na-akpọ ọrụ l2cap_chan_timeout na ikpochapụ ọwa na-enweghị ịlele mmecha nke ọrụ na ọwa na l2cap_le_connect * ọrụ.
Oge nkwụsị nke ndabara bụ 40 sekọnd ma e chere na ọnọdụ agbụrụ enweghị ike ime na igbu oge dị otú ahụ, mana ọ tụgharịrị na n'ihi njehie ọzọ na onye na-ahụ maka SMP, ọ ga-ekwe omume ịnweta oku ozugbo na ngụ oge wee nweta a. ọnọdụ agbụrụ. Nsogbu dị na l2cap_le_connect_req nwere ike iduga nkwụsị ebe nchekwa kernel, na l2cap_connect ọ nwere ike iduga idegharị ọdịnaya nke ebe nchekwa na ime koodu ya. Enwere ike ibu ụdị mbuso agha mbụ site na iji Bluetooth LE 4.0 (kamgbe 2009), nke abụọ mgbe ị na-eji Bluetooth BR/EDR 5.2 (site na 2020).
Ihe ọghọm nke abụọ (CVE-2022-42895) kpatara site na nkwụsị ebe nchekwa fọdụrụ na ọrụ l2cap_parse_conf_req, nke enwere ike iji nweta ozi gbasara ihe nrụtụ aka na kernel site na izipu arịrịọ nhazi ahaziri iche. Ọrụ l2cap_parse_conf_req jiri usoro l2cap_conf_efs, nke ewepụtabeghị ebe nchekwa ekenyela ya na site na iji ọkọlọtọ FLAG_EFS_ENABLE ọ ga-ekwe omume itinye data ochie sitere na ngwugwu dị na ngwugwu ahụ. Nsogbu a na-apụta naanị na sistemu ebe ejiri nhọrọ CONFIG_BT_HS wuo kernel (nwere nkwarụ na ndabara, mana enyere ya aka na nkesa ụfọdụ, dị ka Ubuntu). Mwakpo na-aga nke ọma na-achọkwa ịtọ ntọala HCI_HS_ENABLED site na interface njikwa ka ọ bụrụ eziokwu (ejighi ndabara).
isi: opennet.ru