Pakatikati Linux Zofooka zingapo zapezeka zomwe zimaphatikizapo kupeza malo osungiramo zinthu zakale omwe anali omasuka kale, zomwe zimathandiza ogwiritsa ntchito am'deralo kukulitsa mwayi wawo. Zitsanzo za ntchito zogwiritsa ntchito zapangidwa pazovuta zonse zomwe zikufufuzidwa ndipo zidzafalitsidwa mkati mwa sabata imodzi chidziwitso cha zofookacho chitatulutsidwa. Mapepala okonza mavutowa atumizidwa kwa opanga kernel. Linux.
- CVE-2022-2588 ndi chiwopsezo pakukhazikitsa fyuluta ya cls_route yomwe idachitika chifukwa cholakwitsa chifukwa, pokonza chogwirira chachabechabe, fyuluta yakaleyo sinachotsedwe patebulo la hashi kukumbukira kusanachitike. Chiwopsezo chakhalapo kuyambira kutulutsidwa kwa 2.6.12-rc2. Kuwukiraku kumafuna maufulu a CAP_NET_ADMIN, omwe angapezeke mwa kukhala ndi mwayi wopanga mayina a netiweki kapena malo ogwiritsa ntchito. Monga njira yachitetezo, mutha kuletsa gawo la cls_route powonjezera mzere 'kukhazikitsa cls_route /bin/true' ku modprobe.conf.
- CVE-2022-2586 ndi chiwopsezo mu netfilter subsystem mu nf_tables module, yomwe imapereka ftables paketi fyuluta. Vutoli limayamba chifukwa chakuti chinthu cha nft chimatha kutchula mndandanda wazomwe zili patebulo lina, zomwe zimatsogolera ku malo okumbukira omasulidwa tebulo litachotsedwa. Chiwopsezo chakhalapo kuyambira kutulutsidwa kwa 3.16-rc1. Kuwukiraku kumafuna maufulu a CAP_NET_ADMIN, omwe angapezeke mwa kukhala ndi mwayi wopanga mayina a netiweki kapena malo ogwiritsa ntchito.
- CVE-2022-2585 ndi pachiwopsezo mu POSIX CPU timer chifukwa chakuti itayitanidwa kuchokera ku ulusi wosatsogolera, kapangidwe ka timer kamakhalabe pamndandanda, ngakhale kuyeretsa kukumbukira komwe kwasungidwa. Chiwopsezo chakhalapo kuyambira kutulutsidwa kwa 3.16-rc1.
Source: opennet.ru
