Kusagadzikana kwakawanda kwakaonekwa muLinux kernel, zvichikonzerwa nekuwana yakatosunungurwa nzvimbo dzekurangarira uye kubvumira mushandisi wenzvimbo kuti awedzere maropafadzo avo muhurongwa. Pamatambudziko ese ari kutariswa, maprototypes ekushanda akagadzirwa, ayo anozoburitswa vhiki mushure mekuburitswa kweruzivo nezve kusasimba. Mapeche ekugadzirisa matambudziko akatumirwa kune Linux kernel vanogadzira.
- CVE-2022-2588 injodzi mukuitwa kweiyo cls_route sefa yakakonzerwa nekukanganisika nekuda kwekuti, kana uchigadzira mubato usina maturo, iyo yekare sefa haina kubviswa patafura yehashi ndangariro isati yacheneswa. Kusagadzikana kwave kuripo kubva pakaburitswa 2.6.12-rc2. Kurwiswa kwacho kunoda kodzero dzeCAP_NET_ADMIN, dzinogona kuwanikwa nekugona kugadzira mazita etiweki kana nzvimbo dzemazita. Senzira yekuchengetedza, unogona kudzima cls_route module nekuwedzera mutsara 'install cls_route /bin/true' kune modprobe.conf.
- CVE-2022-2586 ndeyekusagadzikana mune netfilter subsystem mune nf_tables module, iyo inopa iyo nftables packet sefa. Dambudziko rinokonzerwa nenyaya yekuti nft chinhu chinogona kunongedzera rondedzero yakatarwa mune imwe tafura, iyo inotungamira kusvika kune yakasunungurwa nzvimbo yekurangarira mushure mekunge tafura yadzimwa. Kusagadzikana kwave kuripo kubva pakaburitswa 3.16-rc1. Kurwiswa kwacho kunoda kodzero dzeCAP_NET_ADMIN, dzinogona kuwanikwa nekugona kugadzira mazita etiweki kana nzvimbo dzemazita.
- CVE-2022-2585 kusagadzikana muPOSIX CPU timer inokonzerwa nenyaya yekuti kana yadaidzwa kubva kune isiri-inotungamira tambo, iyo timer chimiro chinoramba chiri murondedzero, kunyangwe kujekesa ndangariro dzakagoverwa kuchengetedza. Kusagadzikana kwave kuripo kubva pakaburitswa 3.16-rc1.
Source: opennet.ru