Kua whakaputaina he taunakitanga mō te ngoikoretanga. WeteweteParu, e mōhiotia ana hoki ko DirtyCBC, e āhei ai tētahi kaiwhakamahi ā-rohe kāore i te whai mana ki te whiwhi mana pakiaka i runga i ētahi pūnaha LinuxKei roto i te waehere te raruraru. rxgk ngā pūnaha iti RxRPC ā, e pā ana ki te tuhi i te keteroki whārangi nā te ngaro o te tirotiro tārua-i-te-tuhi i roto i te mahi rxgk_decrypt_skb(). I whakaputaina te PoC i te 18 o Mei, 2026, e BleepingComputer; kua tukuna te PoC ki roto Ngā putunga o te tīma V12.
He kawa whatunga kernel a RxRPC. Linux mā te UDP, e whakarato ana i te kawe pono mō ngā mahi mamao. E kī ana te tuhinga kernel AFS — Ko te Andrew File System tētahi tauira o tētahi taupānga e whakamahi ana i te RxRPC, ā, ko te kawa tonu e tautoko ana i ngā whiriwhiringa haumarutanga hononga. Koinei te wāhi e whai wāhi mai ai te RxGK, e whakamahia ana mō te aratau haumaru o te RxRPC/AFS.
E ai ki te whakaahuatanga V12, ko DirtyDecrypt tētahi atu momo o te akomanga o ngā ngoikoretanga. Tāruakore / Parakore Frag / FragnesiaHe rite tonu te kaupapa o ēnei katoa: mā te whakahaere hē i te mahara o te kernel, te keteroki whārangi, me ngā arai ka taea e tētahi tukanga ā-rohe kāore i te whai mana te pā ki ngā raraunga kāore e taea te tuhi. Mō DirtyDecrypt, he "tuhi rxgk pagecache" tēnei nā te ngaro o te parenga COW i roto i te rxgk_decrypt_skb().
E ai ki te tīma V12 kua kitea e rātou te raruraru, ā, kua tukuna atu hoki e rātou he pūrongo. 9 May 2026 tau, engari i whakautu ngā kaitiaki kernel he tāruarua tēnei o tētahi pepeke kua whakatikahia. Kātahi ka whakaputahia e ngā kairangahau tētahi taunakitanga ariā, e kī ana kei roto kē te whakatikatika i te kernel matua.
Kāore te āhua o ngā CVE i te tino māmā. E ai ki a BleepingComputer kāore he CVE motuhake mō te ingoa DirtyDecrypt i te wā i whakaputaina ai, engari e hono ana te kaitātari a Will Dormann i ngā taipitopito i whakaputaina e V12 ki CVE-2026-31635, i whakatikahia i te mutunga o Paenga-whāwhā. E whakaahua ana a NVD i te CVE-2026-31635 hei hapa i roto i te rxrpc: i tirohia hētia e te mahi rxgk_verify_response() te roa o te kaiwhakamana RESPONSE, ka hua ake pea he roa rawa te kaiwhakamana e tukuna ana ki te rxgk_decrypt_skb() ka kore ai e angitu te waehere BUG_ON(len).
Arā, ko ngā tuhinga e wātea ana ki te marea e hono ana i a DirtyDecrypt ki CVE-2026-31635, engari ko te whakaahuatanga CVE whaimana i roto i te NVD i tēnei wā he āhua whaiti ake, ā, e pā ana ki te hapa tirotiro roa i roto i te rxrpc, kaua ki te ingoa kē o DirtyDecrypt/DirtyCBC hei tāurunga motuhake. Nō reira, he tika ake te tuhi: He rite tonu pea a DirtyDecrypt ki te CVE-2026-31635, he whanaunga tata rānei, kaua e kī koinei te ingoa CVE whaimana.
Me whai kernel kua whakahohea tēnei kōwhiringa hei whakahaere. CONFIG_RXGK, kei roto ko te tautoko RxGK mō te kiritaki AFS me te kawe whatunga. Ka whakawhāitihia te whānuitanga o ngā pūnaha e pāngia ana: ko te mea nui, e pā ana ki ngā tohatoha e tere ana te whai i te kernel o runga, tae atu ki Fedora, kikorangi Linux и openSUSE Tuhinga o muaE whakanui ana a BleepingComputer i whakamatautauria anake te V12 PoC kua whakaputaina ki runga i a Fedora me te kernel matua.
I puta mai a DirtyDecrypt i te papamuri o te raupapa katoa o ngā hua rite Linux Ngā ngoikoretanga o te LPE. I whakaaturia i mua Tāruatia te Kōnae i roto i te algif_aead, Paru-para i roto i ngā wāhanga whatunga, kātahi ka Fragnesia i roto i te XFRM ESP-i roto i te TCP Microsoft whakaahuatia Ko Dirty Frag hei whakanui mana ā-rohe mā roto i ngā wāhanga esp4, esp6, me rxrpc, e āhei ai te kaiwhakaeke ki te uru atu ki te rohe me te whiwhi tūranga ki roto i te pūnaha.
Ko te tūponotanga tūturu o ēnei hapa ko te maha o ngā wā ka whakamahia i muri i te takahi tuatahi: hei tauira, i muri i te takahi i tētahi pūkete SSH, i tētahi anga tukutuku, i tētahi ipu ngoikore, i tētahi kaiwhakamahi ratonga iti rānei te mana. I te whiwhinga o te urunga pakiaka, ka taea e te kaiwhakaeke te whakakore i ngā mana whakahaere haumarutanga, te pānui i ngā mea ngaro, te whakarerekē i ngā rangitaki, te whakatinana i te pumau, me te neke haere tonu i roto i te hanganga.
Me tāuta e ngā kaiwhakamahi o ngā tohatoha tuku-hurihuri pea ngā whakahōutanga kernel hou. Mō ngā pūnaha kāore e taea te whakahōu tonu, e whakahuatia ana i roto i ngā tuhinga ngā otinga rangitahi pēnei i te whakakore i ngā kōwae rxrpc kāore i whakamahia me ngā wāhanga e pā ana. Heoi anō, ka pakaru pea te AFS me ētahi āhuatanga IPsec/VPN i ēnei huarahi mahi, nō reira me whakamahi noa i muri i te whakaū i te pānga ki tētahi pūnaha motuhake.
Mō te nuinga o ngā tāutanga papamahi me te tūmau, he iti ake pea te mōrearea i te Copy Fail: Me whai whirihoranga kernel motuhake me te whakahaere waehere ā-rohe a DirtyDecrypt. Heoi, mō Fedora, Arch Linux, openSUSE Tumbleweed, me ētahi atu pūnaha me ngā whakahoutanga kernel tere, me aro atu ki te take: ehara i te pūrongo ariā i ēnei rā, engari he ngoikoretanga me te taunakitanga ariā kua whakaputaina me te ara mārama ki te whakapiki i te mana.
Source: linux.org.ru
