Qualys adapeza njira yolambalala malloc ndi chitetezo chaulere kawiri kuti ayambitse kusamutsa kuwongolera ku code pogwiritsa ntchito chiwopsezo cha OpenSSH 9.1 chomwe chidatsimikiziridwa kukhala ndi chiopsezo chochepa chopanga mwayi wogwira ntchito. Pa nthawi yomweyi, kuthekera kopanga ntchito yogwiritsira ntchito kumakhalabe funso lalikulu.
Chiwopsezocho chimayamba chifukwa cha kutsimikizika kotsimikizika kawiri kwaulere. Kuti mupangitse kuti kusatetezeka kuwonekere, ndikokwanira kusintha chikwangwani cha kasitomala wa SSH kukhala "SSH-2.0-FuTTYSH_9.1p1" (kapena kasitomala wina wakale wa SSH) kuti mukhazikitse mbendera za "SSH_BUG_CURVE25519PAD" ndi "SSH_OLD_DHGEX". Mukakhazikitsa mbendera izi, kukumbukira kwa buffer ya "options.kex_algorithms" kumamasulidwa kawiri.
Ofufuza ochokera ku Qualys, pomwe akuwongolera chiwopsezocho, adatha kuwongolera kaundula wa purosesa wa "% rip", womwe uli ndi cholozera ku malangizo otsatira omwe akuyenera kuperekedwa. Njira yopezerapo masuku pamutu imakupatsani mwayi wosinthira zowongolera kumalo aliwonse adilesi ya sshd m'malo osasinthidwa a OpenBSD 7.2, operekedwa mwachisawawa ndi OpenSSH 9.1.
Amadziwika kuti prototype akufuna ndi kukhazikitsa yekha gawo loyamba la kuukira - kulenga masuku pamutu ntchito, m`pofunika kuzilambalala ASLR, NX ndi ROP chitetezo njira, ndi kuthawa sandbox kudzipatula, zomwe n`zokayikitsa. Kuti athetse vuto lodutsa ASLR, NX ndi ROP, m'pofunika kupeza zambiri za maadiresi, zomwe zingatheke pozindikira chiwopsezo china chomwe chimatsogolera kutayika kwa chidziwitso. Vuto munjira yamwayi ya makolo kapena kernel ikhoza kuthandizira kutuluka mu sandbox.
Source: opennet.ru