Nuglaanta (CVE-2021-27365) ayaa lagu aqoonsaday nidaamka hoosaadka nidaamka iSCSI ee kernel Linux, kaas oo u oggolaanaya isticmaale maxalli ah oo aan mudnayn in uu fuliyo koodka heerka kernel oo uu ka helo mudnaanta xididka nidaamka. Nooc shaqaynaysa ka faa'iidaysiga ayaa diyaar u ah baaritaanka. Nuglaanta waxaa lagu xalliyay cusboonaysiinta kernel Linux 5.11.4, 5.10.21, 5.4.103, 4.19.179, 4.14.224, 4.9.260, iyo 4.4.260. Cusbooneysiinta xirmada Kernel waxaa laga heli karaa Debian, Ubuntu, SUSE/openSUSE, Arch Linux iyo Fedora qaybinta. Weli wax hagaajin ah looma sii dayn RHEL
Dhibka waxaa keenay qalad ku yimid shaqada iscsi_host_get_param () ee ka timid moduleka libiscsi, oo dib loo soo celiyay 2006 intii lagu jiray horumarinta nidaamka hoosaadka iSCSI. Sababtoo ah la'aanta hubinta cabbirka saxda ah, qaar ka mid ah sifooyinka xargaha iSCSI, sida magaca martida ama magaca isticmaalaha, ayaa laga yaabaa inay dhaafaan qiimaha PAGE_SIZE (4 KB). Nuglaanta waxaa ka faa'ideysan kara isticmaale aan mudneyn oo soo diraya fariimaha Netlink ee dejinaya sifooyinka iSCSI ee ka weyn PAGE_SIZE. Marka sifooyinkan lagu akhriyo sysfs ama seqfs, kood ayaa loo yaqaan kaas oo gudbiya sifooyinka shaqada sprintf si loogu koobiyo kaydka cabirkiisu yahay PAGE_SIZE.
Ka faa'iidaysiga u nuglaanshaha qaybinta waxay ku xidhan tahay taageerada si toos ah loogu shubayo moduleka kernel scsi_transport_iscsi marka la isku dayayo in la abuuro NETLINK_ISCSI godad. Qaybinta halka cutubkan si toos ah loogu shubo, weerarka waa la fulin karaa iyadoon loo eegin isticmaalka shaqada iSCSI. Isla mar ahaantaana, si guul leh loo isticmaalo ka faa'iidaysiga, diiwaangelinta ugu yaraan hal gaadiidka iSCSI ayaa sidoo kale loo baahan yahay. Dhanka kale, si aad isu diiwaangeliso gaadiidka, waxaad isticmaali kartaa moduleka ib_iser kernel, kaas oo si toos ah loo raro marka isticmaale aan mudnayn uu isku dayo inuu sameeyo godka NETLINK_RDMA.
Soo dejinta tooska ah ee cutubyada lagama maarmaanka u ah ka faa'iidaysiga waxaa lagu taageeraa CentOS 8, RHEL 8 iyo Fedora marka lagu rakibayo xirmada rdma-core ee nidaamka, taas oo ku tiirsanaanta xirmooyinka caanka ah qaarkood oo lagu rakibay si caadi ah qaabeynta goobaha shaqada, nidaamyada serverka leh GUI iyo deegaanka martida loo yahay. Si kastaba ha noqotee, rdma-core lama rakibo marka la isticmaalayo isku xirka serverka ee ka shaqeeya kaliya qaabka konsole iyo marka la rakibayo sawirka rakibaadda ugu yar. Tusaale ahaan, xirmada waxaa lagu daraa qaybinta aasaasiga ah ee Fedora 31 Workstation, laakiin kuma jiraan Fedora 31 Server. Debian iyo Ubuntu aad ayey ugu nuglaadeen dhibaatada sababtoo ah xirmada rdma-core waxay ku raran yihiin cutubyada kernel-ka ee loo baahan yahay weerarka kaliya haddii qalabka RDMA uu jiro.
Nabadgelyo ahaan, waxaad joojin kartaa rarka tooska ah ee moduleka libiscsi: echo βinstall libiscsi /bin/trueβ >> /etc/modprobe.d/disable-libiscsi.conf
Intaa waxaa dheer, laba u nuglaansho yar oo khatar ah oo keeni kara in xogta laga soo daayo kernel-ka ayaa lagu hagaajiyay nidaamka hoosaadka iSCSI: CVE-2021-27363 akhri) . Nuglaantaan waxaa loo isticmaali karaa in lagula xiriiro socket netlink oo leh nidaamka hoose ee iSCSI iyada oo aan la helin mudnaanta lagama maarmaanka ah. Tusaale ahaan, isticmaale aan mudnayn ayaa ku xidhi kara iSCSI oo soo saari kara "dhamaadka kalfadhiga" si loo joojiyo fadhiga.
Source: opennet.ru