Nuglaanta (CVE-6.2-2023) ayaa lagu aqoonsaday Linux kernel 1998, kaas oo curyaamiya ilaalinta weerarada Specter v2, kaas oo u oggolaanaya marin u helka xusuusta hababka kale ee ku dhex jira silsiladaha SMT ama Hyper Threading kala duwan, laakiin isla processor-ka jirka xudunta u ah. Nuglaanta, iyo waxyaabo kale, ayaa loo isticmaali karaa in lagu sababeeyo daadinta xogta u dhaxaysa mishiinnada farsamada ee nidaamyada daruuraha. Dhibaatadu waxay saamaysaa kaliya Linux 6.2 kernel waxaana sababa hirgelinta khaldan ee wanaajinta loogu talagalay in lagu dhimo sare u kaca weyn ee codsanaya ilaalinta Specter v2. Nuglaanta waxaa lagu hagaajiyay laanta tijaabada ee Linux 6.3 kernel.
Meesha isticmaalaha, si looga ilaaliyo weerarada Specter, habraacyadu waxay si xushmad leh u baabi'in karaan fulinta malo-awaalka ah ee tilmaamaha iyagoo isticmaalaya prctl PR_SET_SPECULATION_CTRL ama isticmaal nidaamka shaandhaynta wicitaanka ee ku salaysan habka seccomp. Sida laga soo xigtay cilmi-baarayaasha kuwaas oo aqoonsaday dhibaatada, hagaajinta khaldan ee kernel 6.2 ayaa ka tagay mashiinnada farsamada ee ugu yaraan hal bixiyaha daruuriga ah iyada oo aan lahayn ilaalin habboon, in kasta oo lagu daro habka xannibaadda-BTI ee weerarka iyada oo loo marayo prctl. Nuglaanta ayaa sidoo kale ka muuqata server-yada caadiga ah ee leh kernel 6.2, marka la shubayo goobta "spectre_v2=ibrs" ayaa la isticmaalaa.
Nuxurka nuglaanta ayaa ah in marka la dooranayo hababka ilaalinta IBRS ama eIBRS, hagaajinta la soo bandhigay waxay curyaamisay adeegsiga habka STIBP (Saadaashayaasha Laamaha tooska ah ee aan tooska ahayn), kaas oo lagama maarmaan u ah in la xannibo qulqulka marka la isticmaalayo tignoolajiyada isku dhafan ee isku dhafan (SMT ama Hyper- Dulqaadid). Si kastaba ha noqotee, habka eIBRS kaliya ayaa bixiya ka hortagga daadinta dunta dhexdooda, laakiin ma aha qaabka IBRS, tan iyo xaaladdan IBRS-yar, oo bixisa ka-hortagga dheecaanka u dhexeeya xudunta macquulka ah, ayaa lagu nadiifiyaa sababo waxqabad marka xakamaynta ay ku soo noqoto booska isticmaalaha, taas oo ka dhigaysa threads ee booska isticmaalaha aan ka ilaalin weerarrada Specter v2.
Source: opennet.ru