Nuglaanta kale ayaa lagu aqoonsaday nidaamka hoosaadka eBPF (ma jiro CVE), sida dhibaatadii shalay oo u oggolaanaysa isticmaale maxalli ah oo aan mudnayn inuu ku fuliyo koodka heerka kernel Linux. Dhibaatadu waxay soo ifbaxday tan iyo Linux kernel 5.8 oo weli aan la hagaajin. Ka faa'iidaysiga shaqo ayaa la ballan qaaday in la daabici doono Janaayo 18-keeda.
Nuglaanta cusub waxaa keenay xaqiijinta khaldan ee barnaamijyada eBPF ee loo gudbiyo fulinta. Gaar ahaan, xaqiijiyaha eBPF si sax ah uma xaddidin noocyada qaar ee *_OR_NULL tilmaamayaasha, taas oo suurtogal ka dhigtay in la maareeyo tilmaamayaasha barnaamijyada eBPF oo ay gaaraan korodhka mudnaanta. Si loo joojiyo ka faa'iidaysiga nuglaanta, waxaa la soo jeediyay in la mamnuuco fulinta barnaamijyada BPF ee isticmaalayaasha aan mudnaanta lahayn ee wata amarka "sysctl -w kernel.unprivileged_bpf_disabled=1".
Source: opennet.ru