Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > Zowopsa mu Linux kernel ksmbd module yomwe imalola kugwiritsa ntchito ma code akutali

Zowopsa mu Linux kernel ksmbd module yomwe imalola kugwiritsa ntchito ma code akutali

Mu gawo la ksmbd, lomwe limapereka kukhazikitsidwa kwa seva yamafayilo kutengera protocol ya SMB yomwe idamangidwa mu Linux kernel, ziwopsezo 14 zidadziwika, zinayi zomwe zimalola kuti m'modzi agwiritse ntchito patali ndi ufulu wa kernel. Kuwukirako kutha kuchitidwa popanda kutsimikizika; ndizokwanira kuti gawo la ksmbd lizitsegulidwa padongosolo. Mavuto akuwoneka kuyambira pa kernel 5.15, yomwe idaphatikizapo gawo la ksmbd. Zowonongeka zidakhazikitsidwa muzosintha za kernel 6.3.2, 6.2.15, 6.1.28 ndi 5.15.112. Mutha kutsata zomwe zakonzedwa patsamba lotsatirali: Debian, Ubuntu, Gentoo, RHEL, SUSE, Fedora, Gentoo, Arch.

Zazindikirika:

  • CVE-2023-32254, CVE-2023-32250, CVE-2023-32257, CVE-2023-32258 - kutsata ma code akutali ndi ufulu wa kernel chifukwa chosowa kutseka kwachinthu koyenera pokonza zopempha zakunja zomwe zili ndi SMB2_TREE_DISCONNECTION_SUP_SECKSMB_SMB2MB, SMB2_TREE_DISCONNECTION_SUP2MB SMBXNUMX_CLOSE, zomwe zimabweretsa mpikisano wovuta. Kuukira kungathe kuchitika popanda kutsimikizika.
  • CVE-2023-32256 - Kutaya zomwe zili m'magawo okumbukira kernel chifukwa chamtundu wamtundu panthawi yokonza malamulo a SMB2_QUERY_INFO ndi SMB2_LOGOFF. Kuukira kungathe kuchitika popanda kutsimikizika.
  • CVE-2023-32252, CVE-2023-32248 - Kukana kwakutali kwa ntchito chifukwa cha NULL pointer dereference pokonza malamulo a SMB2_LOGOFF, SMB2_TREE_CONNECT ndi SMB2_QUERY_INFO. Kuukira kungathe kuchitika popanda kutsimikizika.
  • CVE-2023-32249 - Kuthekera kwa kubedwa kwa gawo ndi wogwiritsa ntchito chifukwa chosowa kudzipatula koyenera mukamagwira ID ya gawo munjira zambiri.
  • CVE-2023-32247, CVE-2023-32255 - Kukana ntchito chifukwa cha kutayikira kukumbukira pokonza lamulo la SMB2_SESSION_SETUP. Kuukira kungathe kuchitika popanda kutsimikizika.
  • CVE-2023-2593 ndikukana ntchito chifukwa cha kutopa kwa kukumbukira komwe kulipo, komwe kumachitika chifukwa cholephera kukumbukira pokonza maulumikizidwe atsopano a TCP. Kuukira kungathe kuchitika popanda kutsimikizika.
  • CVE-2023-32253 Kukanidwa kwa ntchito chifukwa chakuchedwa kumachitika mukakonza lamulo la SMB2_SESSION_SETUP. Kuukira kungathe kuchitika popanda kutsimikizika.
  • CVE-2023-32251 - kusowa kwa chitetezo pakuwukiridwa mwankhanza.
  • CVE-2023-32246 Wogwiritsa ntchito m'deralo yemwe ali ndi ufulu wotsitsa gawo la ksmbd atha kukwaniritsa ma code pamlingo wa Linux kernel.

Kuphatikiza apo, zofooka zina 5 zidadziwika mu phukusi la ksmbd-tools, lomwe limaphatikizapo zofunikira pakuwongolera ndikugwira ntchito ndi ksmbd, zomwe zimachitidwa pamalo ogwiritsira ntchito. Zowopsa zowopsa (ZDI-CAN-17822, ZDI-CAN-17770, ZDI-CAN-17820, CVE yomwe sinapatsidwebe) imalola wowukira wakutali, wosavomerezeka kuti apereke khodi yawo yokhala ndi mizu. Kuwonongekaku kumachitika chifukwa cholephera kuwunika kukula kwa data yakunja yolandilidwa musanayikopere ku buffer mu khodi ya service ya WKSSVC komanso mu LSARPC_OPNUM_LOOKUP_SID2 ndi SAMR_OPNUM_QUERY_USER_INFO opcode handlers. Zofooka zina ziwiri (ZDI-CAN-17823, ZDI-CAN-17821) zingayambitse kukana kwakutali kwa ntchito popanda kutsimikizika.

Ksmbd imawonedwa ngati chowonjezera cha Samba chochita bwino kwambiri, chokhazikika chomwe chimalumikizana ndi zida za Samba ndi malaibulale ngati pakufunika. Thandizo loyendetsa seva ya SMB pogwiritsa ntchito gawo la ksmbd lakhalapo mu phukusi la Samba kuyambira pamene linatulutsidwa 4.16.0. Mosiyana ndi seva ya SMB yomwe imayenda m'malo ogwiritsira ntchito, ksmbd imakhala yogwira ntchito bwino, kugwiritsa ntchito kukumbukira, komanso kuphatikiza ndi luso lapamwamba la kernel. ndi Steve French wa Microsoft, wosamalira ma subsystems a CIFS/SMB2/SMB3 mu Linux kernel komanso membala wanthawi yayitali wa gulu lachitukuko la Samba, wathandizira kwambiri pakukhazikitsa kuthandizira ma protocol a SMB/CIFS ku Samba ndi Linux.

Kuphatikiza apo, ziwopsezo ziwiri zitha kudziwika mu dalaivala wazithunzi za vmwgfx, zomwe zimagwiritsidwa ntchito kukhazikitsa mathamangitsidwe a 3D m'malo a VMware. Chiwopsezo choyamba (ZDI-CAN-20292) chimalola wogwiritsa ntchito wamba kuti achulukitse mwayi wawo pamakina. Chiwopsezocho ndi chifukwa chosowa kuyang'ana momwe buffer ilili musanayimasulire pokonza vmw_buffer_object, zomwe zingayambitse kuyimba kawiri ku ntchito yaulere. Chiwopsezo chachiwiri (ZDI-CAN-20110) chimabweretsa kutayikira kwa zomwe zili mkati mwa kernel chifukwa cha zolakwika pakukonza kutseka kwa zinthu za GEM.

Source: opennet.ru

Kuwonjezera ndemanga