Jason A. Donenfeld, oo ah qoraaga VPN WireGuard, ayaa u soo jiiday dareenka horumariyayaashu hack wasakh ah oo ku jira koodhka kernel Linux kaas oo beddelaya habdhaqanka hababka magacyadoodu ka bilaabmaan dabeecadda "X". Jaleecada hore, hagaajinta noocan oo kale ah waxaa sida caadiga ah loo isticmaalaa rootkits si ay uga tagaan daldaloolo qarsoon ee habka lagu xirayo, laakiin falanqaynta ayaa muujisay in isbeddelka lagu daray 2019 si ku meel gaar ah loo hagaajiyo ku-xadgudubka ku-meel-gaadhka isticmaalaha pop-up, iyadoo la raacayo mabda'a isbeddelaya kernel waa inuusan jebin waafaqsanaanta codsiyada.
Dhibaatooyinku waxay soo baxeen markii la isku dayay in la isticmaalo habka loogu beddelo habka fiidiyaha ee DDX darawalka xf86-video-modesetting ee loo isticmaalo server-ka X.Org, taas oo ay sabab u tahay ku-xidhka hababka laga bilaabo dabeecadda "X" (waxaa loo qaatay. in habraaca shaqada lagu dabaqay habka "Xorg"). Ku dhawaad ββisla markiiba dhibaatada X.Org waa la hagaajiyay (isticmaalka atomikada API waa naafo si caadi ah), laakiin waxay illoobeen inay ka saaraan hagaajinta ku meel gaadhka ah ee kernel iyo isku dayga ah in loo diro ioctl si loo beddelo habka dhammaan hababka laga bilaabo jilaha "X" weli wuu sii socdaa si uu u soo celiyo qalad. haddii (current->comm[0] == 'X' && req->qiimaha == 1) {pr_info("la helay meel-isticmaalka qaabaynta atomiga jaban, curyaamiya atomiga\n"); soo noqoshada -EOPNOTSUPP; }
Source: opennet.ru