Kusagadzikana (CVE-2022-0435) kwakaonekwa muLinux kernel module iyo inovimbisa kushanda kweTIPC (Transparent Inter-process Communication) network protocol, inogona kubvumira kodhi kuti iitwe padanho rekernel nekutumira yakanyatsogadzirirwa network. packet. Iyo nyaya inongobata masisitimu ane tipc.ko kernel module yakarodha uye iyo TIPC stack yakagadziriswa, iyo inowanzo shandiswa mumasumbu uye haigoneswe nekusarudzika pane isina-yakasarudzika Linux kugovera.
Zvinocherechedzwa kuti kana uchivaka kernel mu "CONFIG_FORTIFY_SRC=y" modhi (inoshandiswa muRHEL), iyo inowedzera mamwe mabheji macheki kune memcpy () basa, kushanda kunogumira kune emergency stop (iyo kernel panics). Kana ikaurayiwa pasina mamwe macheki uye kana ruzivo nezve canary tag rinoshandiswa kuchengetedza stack yakadonhedzwa, dambudziko rinogona kushandiswa kune kure kure kodhi ine kodzero dzekernel. Vatsvagiri vakaona dambudziko iri vanoti nzira yekubiridzira idiki uye inozoburitswa mushure mekubviswa kwakapararira kwekusagadzikana mukugovewa.
Kusagadzikana kunokonzerwa nekuwanda kwe stack kunoitika pakugadzirisa mapaketi, kukosha kwemunda nenhamba yenhengo dzemadomain node dzinopfuura 64. Kuchengeta node parameters mu tipc.ko module, yakatarwa array "u32 members[64 ]" inoshandiswa, asi mukugadzirisa zvakatsanangurwa mupakiti Nhamba yenode haitarise kukosha kwe "member_cnt", iyo inobvumira kukosha kudarika 64 kushandiswa pakudzora kunyorwa kwe data munzvimbo yekuyeuka inotevera. kune "dom_bef" chimiro pane stack.
Iyo bug inotungamira mukusagadzikana yakaunzwa muna Chikumi 15, 2016 uye yakaverengerwa muLinux 4.8 kernel. Kusagadzikana kwakagadziriswa muLinux kernel yakaburitswa 5.16.9, 5.15.23, 5.10.100, 5.4.179, 4.19.229, 4.14.266, uye 4.9.301. Mune kernels yekugovera kwakawanda dambudziko rinoramba risina kugadziriswa: RHEL, Debian, Ubuntu, SUSE, Fedora, Gentoo, Arch Linux.
Iyo TIPC protocol yakatanga kugadzirwa na Ericsson, yakagadzirirwa kuronga inter-process kutaurirana musumbu uye inobatidzwa zvakanyanya pane cluster node. TIPC inogona kushanda pamusoro peEthernet kana UDP (network port 6118). Paunenge uchishanda pamusoro peEthernet, kurwiswa kunogona kuitwa kubva kunetiweki yemunharaunda, uye kana uchishandisa UDP, kubva kune network network kana chiteshi chisina kuvharwa nefirewall. Kurwiswa kwacho kunogona zvakare kuitwa nemushandisi wemuno asina rusarura wemuenzi. Kuti uvhure TIPC, unofanirwa kudhawunirodha tipc.ko kernel module uye gadzirisa inosunga kune network interface uchishandisa netlink kana tipc utility.
Source: opennet.ru