ProHoster > Blog > nkhani zapaintaneti > Zovuta mu ksmbd kernel module Linux, zomwe zimakulolani kuti mugwiritse ntchito code yanu patali

Zovuta mu ksmbd kernel module Linux, zomwe zimakulolani kuti mugwiritse ntchito code yanu patali

Mu gawo la ksmbd, lomwe limapereka kernel yomangidwa mkati Linux Zofooka khumi ndi zinayi zinapezeka mu kukhazikitsa kwa seva ya fayilo yochokera ku SMB, zinayi mwa izo zimalola kugwiritsa ntchito ma code akutali okhala ndi ma kernel rights. Kuukiraku kungachitike popanda kutsimikizira; gawo la ksmbd liyenera kuyatsidwa pa dongosololi. Mavutowa akhalapo kuyambira kernel 5.15, yomwe idaphatikizapo gawo la ksmbd. Zofookazo zidakonzedwa mu zosintha za kernel 6.3.2, 6.2.15, 6.1.28, ndi 5.15.112. Mutha kutsatira ma patches omwe ali mu magawidwe patsamba lotsatirali: Debian, Ubuntu, Gentoo, RHEL, SUSE, Fedora, Gentoo, Arch.

Zazindikirika:

  • CVE-2023-32254, CVE-2023-32250, CVE-2023-32257, CVE-2023-32258 - Kugwiritsa ntchito ma code akutali ndi mwayi wa kernel chifukwa chosowa maloko oyenerera pokonza zopempha zakunja zomwe zili ndi SMB2_TREENNESS_DISCONNES_DISCOW SMB2_LOGOFF, ndi SMB2_CLOSE malamulo, zomwe zimapangitsa kuti mpikisano ukhale wovuta. Kuukira kungachitike popanda kutsimikizika.
  • CVE-2023-32256 - Kutayikira kwa kernel kumachitika chifukwa cha mpikisano mukamakonza malamulo a SMB2_QUERY_INFO ndi SMB2_LOGOFF. Izi zitha kuchitika popanda kutsimikizika.
  • CVE-2023-32252, CVE-2023-32248 - Kukana kwakutali kwa ntchito chifukwa cha NULL pointer dereference pokonza SMB2_LOGOFF, SMB2_TREE_CONNECT, ndi SMB2_QUERY_INFO malamulo. Kuukira kungachitike popanda kutsimikizika.
  • CVE-2023-32249 - Kuthekera kwa kubedwa kwa gawo ndi wogwiritsa ntchito chifukwa chosowa kudzipatula koyenera mukamagwira chizindikiritso cha gawo munjira zambiri.
  • CVE-2023-32247, CVE-2023-32255 - Kukana ntchito chifukwa cha kutayikira kukumbukira pokonza lamulo la SMB2_SESSION_SETUP. Kuukira kungachitike popanda kutsimikizika.
  • CVE-2023-2593 - Kukana kukhala pachiwopsezo cha ntchito chifukwa cha kutopa kwa kukumbukira kumayambitsidwa ndi cholakwika chomwe chimalepheretsa kukumbukira kubwezeredwa pokonza zolumikizira zatsopano za TCP. Kuukira kungachitike popanda kutsimikizika.
  • CVE-2023-32253 - Kukana ntchito chifukwa chanthawi yayitali pokonza lamulo la SMB2_SESSION_SETUP. Kuukira kungachitike popanda kutsimikizika.
  • CVE-2023-32251 - Kupanda chitetezo pakuwukiridwa mwankhanza.
  • CVE-2023-32246 - Wogwiritsa ntchito dongosolo lapafupi ndi komwe ali ndi ufulu wotsitsa gawo la ksmbd akhoza kukwaniritsa kukhazikitsidwa kwa code ya kernel. Linux.

Kuphatikiza apo, ziwopsezo zina zisanu zidadziwika mu phukusi la ksmbd-tools, lomwe limaphatikizapo zida zogwiritsa ntchito poyang'anira ndikugwira ntchito ndi ksmbd. Zowopsa kwambiri (ZDI-CAN-17822, ZDI-CAN-17770, ZDI-CAN-17820, CVE yomwe sinapatsidwebe) imalola wowukira wakutali, wosavomerezeka kuti apereke khodi yokhala ndi mwayi wa mizu. Kuwonongekaku kumachitika chifukwa cholephera kutsimikizira kukula kwa data yakunja yolandilidwa musanayikopere ku buffer mu khodi ya service ya WKSSVC komanso mu LSARPC_OPNUM_LOOKUP_SID2 ndi SAMR_OPNUM_QUERY_USER_INFO opcode handlers. Zofooka zina ziwiri (ZDI-CAN-17823, ZDI-CAN-17821) zingayambitse kukana kwakutali kwa ntchito popanda kutsimikizika.

Ksmbd imakwezedwa ngati chowonjezera chapamwamba, chokonzeka kuikidwa ku Samba, chomwe chimagwirizana ndi zida za Samba ndi malaibulale ngati pakufunika. Chithandizo choyendetsa seva ya SMB pogwiritsa ntchito gawo la ksmbd chakhalapo mu phukusi la Samba kuyambira pomwe idatulutsidwa 4.16.0. Mosiyana ndi seva ya SMB yokhala ndi malo ogwiritsira ntchito, ksmbd imagwira ntchito bwino kwambiri pankhani ya magwiridwe antchito, kugwiritsa ntchito kukumbukira, komanso kuphatikiza ndi mawonekedwe apamwamba a kernel. Khodi ya ksmbd idalembedwa ndi Namjae Jeon wa Samsung ndi Hyunchul Lee wa LG, ndipo woyang'anira kernel yake ndi Steve French wa Microsoft, woyang'anira ma subsystem a CIFS/SMB2/SMB3 mu kernel. Linux komanso membala wa nthawi yayitali wa gulu lopanga Samba, yemwe adapereka chithandizo chofunikira pakukhazikitsa chithandizo cha protocol ya SMB/CIFS ku Samba ndi Linux.

Kuphatikiza apo, ziwopsezo ziwiri ndizowoneka bwino mu driver wazithunzi za vmwgfx, zomwe zimagwiritsidwa ntchito poyambitsa mathamangitsidwe a 3D m'malo a VMware. Chiwopsezo choyamba (ZDI-CAN-20292) chimalola ogwiritsa ntchito kuti awonjezere mwayi wawo. Chiwopsezocho chimayamba chifukwa chosowa kutsimikizika kwa buffer musanamasule chinthu cha vmw_buffer_object, chomwe chingayambitse kuyimba kawiri ku ntchito yaulere. Chiwopsezo chachiwiri (ZDI-CAN-20110) chimatsogolera kuchulukira kwa kukumbukira kwa kernel chifukwa cha zolakwika pakutseka kwa chinthu cha GEM.

Source: opennet.ru

Gulani kuchititsa kodalirika kwamasamba okhala ndi chitetezo cha DDoS, ma seva a VPS VDS Gulani malo odalirika osungira mawebusayiti okhala ndi chitetezo cha DDoS, ma seva a VPS VDS | ProHoster