Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > Chiwopsezo mu gawo la ksmbd la Linux kernel, lomwe limakupatsani mwayi wogwiritsa ntchito code yanu patali.

Chiwopsezo mu gawo la ksmbd la Linux kernel, lomwe limakupatsani mwayi wogwiritsa ntchito code yanu patali.

Chiwopsezo chachikulu chadziwika mu gawo la ksmbd, lomwe limaphatikizapo kukhazikitsa seva yamafayilo kutengera protocol ya SMB yomangidwa mu Linux kernel, yomwe imakulolani kuti mugwiritse ntchito code yanu patali ndi ufulu wa kernel. Kuwukirako kutha kuchitidwa popanda kutsimikizika; ndizokwanira kuti gawo la ksmbd lizitsegulidwa padongosolo. Vutoli lakhala likuwonekera kuyambira kernel 5.15, yomwe idatulutsidwa mu Novembala 2021, ndipo idakonzedwa mwakachetechete pazosintha 5.15.61, 5.18.18 ndi 5.19.2, zomwe zidatulutsidwa mu Ogasiti 2022. Popeza chizindikiritso cha CVE sichinapatsidwebe nkhaniyi, palibe chidziwitso chenicheni cha momwe mungakonzere vutoli pogawa.

Tsatanetsatane wa kugwiritsiridwa ntchito kwachiwopsezo sizinafotokozedwe; zimangodziwika kuti chiwopsezocho chimayamba chifukwa chofikira malo okumbukira omwe adamasulidwa kale (Gwiritsani Ntchito-Pambuyo-Kwaulere) chifukwa chosowa kuyang'ana kukhalapo kwa chinthu musanagwire ntchito. pa izo. Vutoli ndi chifukwa chakuti smb2_tree_disconnect() ntchito inamasula kukumbukira komwe kunaperekedwa kwa ksmbd_tree_connect, koma pambuyo pake panali cholozera chomwe chimagwiritsidwa ntchito pokonza zopempha zina zakunja zomwe zili ndi SMB2_TREE_DISCONNECT malamulo.

Kuphatikiza pa chiwopsezo chomwe chatchulidwa, zovuta zinayi zowopsa zakhazikitsidwanso mu ksmbd:

  • ZDI-22-1688 - kutsata ma code akutali ndi ufulu wa kernel chifukwa cha fayilo yosinthira mawonekedwe osayang'ana kukula kwenikweni kwa data yakunja musanayikopere ku buffer yodzipatulira. Chiwopsezocho chimachepetsedwa chifukwa chakuti kuwukirako kumatha kuchitidwa ndi wogwiritsa ntchito wotsimikizika.
  • ZDI-22-1691 - chidziwitso chakutali chimachokera ku kukumbukira kwa kernel chifukwa cha kuwunika kolakwika kwa magawo olowera mu SMB2_WRITE chowongolera chowongolera (chiwopsezocho chitha kuchitidwa ndi wogwiritsa ntchito wovomerezeka).
  • ZDI-22-1687 - kukana kwakutali kwa ntchito chifukwa cha kutopa kwa kukumbukira komwe kulipo m'dongosolo chifukwa cha kutulutsidwa kolakwika kwa zinthu mu SMB2_NEGOTIATE wowongolera (kuukira kungathe kuchitika popanda kutsimikizika).
  • ZDI-22-1689 - Kuwonongeka kwa kernel yakutali chifukwa chosowa kutsimikizika koyenera kwa magawo a lamulo la SMB2_TREE_CONNECT, zomwe zimapangitsa kuti muwerenge kuchokera kudera lomwe lili kunja kwa buffer (chiwonongekocho chikhoza kuchitidwa ndi wogwiritsa ntchito wovomerezeka).

Thandizo loyendetsa seva ya SMB pogwiritsa ntchito gawo la ksmbd lakhalapo mu phukusi la Samba kuyambira pamene linatulutsidwa 4.16.0. Mosiyana ndi seva ya SMB yogwiritsa ntchito, ksmbd ndiyothandiza kwambiri potengera magwiridwe antchito, kukumbukira kukumbukira, komanso kuphatikiza ndi zida zapamwamba. Ksmbd imawonedwa ngati chowonjezera cha Samba chochita bwino kwambiri, chokhazikika chomwe chimalumikizana ndi zida za Samba ndi malaibulale ngati pakufunika. Khodi ya ksmbd inalembedwa ndi Namjae Jeon wa Samsung ndi Hyunchul Lee wa LG, ndipo kernel imasungidwa ndi Steve French wa Microsoft, wosamalira ma subsystems a CIFS/SMB2/SMB3 mu Linux kernel komanso membala wakale wa gulu lachitukuko la Samba. , omwe adathandizira kwambiri pakukhazikitsa chithandizo cha ma protocol a SMB/CIFS mu Samba ndi Linux.

Source: opennet.ru

Kuwonjezera ndemanga