Zofooka zingapo zadziwika mu kernel ya Linux, chifukwa chofikira malo okumbukira omasulidwa kale ndikulola wogwiritsa ntchito wamba kuti awonjezere mwayi wawo pamakina. Pazovuta zonse zomwe zikuganiziridwa, ma prototypes ogwirira ntchito adapangidwa, omwe adzasindikizidwa patatha sabata kusindikizidwa kwa chidziwitso chazofooka. Zigamba zokonza zovutazo zatumizidwa kwa opanga ma Linux kernel.
- CVE-2022-2588 ndi chiwopsezo pakukhazikitsa fyuluta ya cls_route yomwe idachitika chifukwa cholakwitsa chifukwa, pokonza chogwirira chachabechabe, fyuluta yakaleyo sinachotsedwe patebulo la hashi kukumbukira kusanachitike. Chiwopsezo chakhalapo kuyambira kutulutsidwa kwa 2.6.12-rc2. Kuwukiraku kumafuna maufulu a CAP_NET_ADMIN, omwe angapezeke mwa kukhala ndi mwayi wopanga mayina a netiweki kapena malo ogwiritsa ntchito. Monga njira yachitetezo, mutha kuletsa gawo la cls_route powonjezera mzere 'kukhazikitsa cls_route /bin/true' ku modprobe.conf.
- CVE-2022-2586 ndi chiwopsezo mu netfilter subsystem mu nf_tables module, yomwe imapereka ftables paketi fyuluta. Vutoli limayamba chifukwa chakuti chinthu cha nft chimatha kutchula mndandanda wazomwe zili patebulo lina, zomwe zimatsogolera ku malo okumbukira omasulidwa tebulo litachotsedwa. Chiwopsezo chakhalapo kuyambira kutulutsidwa kwa 3.16-rc1. Kuwukiraku kumafuna maufulu a CAP_NET_ADMIN, omwe angapezeke mwa kukhala ndi mwayi wopanga mayina a netiweki kapena malo ogwiritsa ntchito.
- CVE-2022-2585 ndi pachiwopsezo mu POSIX CPU timer chifukwa chakuti itayitanidwa kuchokera ku ulusi wosatsogolera, kapangidwe ka timer kamakhalabe pamndandanda, ngakhale kuyeretsa kukumbukira komwe kwasungidwa. Chiwopsezo chakhalapo kuyambira kutulutsidwa kwa 3.16-rc1.
Source: opennet.ru