ProHoster > Blog > litaba tsa inthanete > Bofokoli ho mojule oa Linux kernel ksmbd o lumellang ts'ebetso ea khoutu e hole

Bofokoli ho mojule oa Linux kernel ksmbd o lumellang ts'ebetso ea khoutu e hole

Mojuleng oa ksmbd, o fanang ka ts'ebetsong ea seva ea faele e ipapisitseng le protocol ea SMB e hahiloeng ka har'a kernel ea Linux, ho ile ha fumanoa likotsi tse 14, tse 'nè tsa tsona li lumellang motho hore a phethe khoutu ea hae a le hole le litokelo tsa kernel. Tlhaselo e ka etsoa ntle le netefatso; ho lekane hore mojule oa ksmbd o kenngoe tsamaisong. Mathata a hlaha ho qala ho kernel 5.15, e neng e kenyelletsa mojule oa ksmbd. Bofokoli bo ne bo tsitsitse ho lintlafatso tsa kernel 6.3.2, 6.2.15, 6.1.28 le 5.15.112. U ka lekola litokiso ho ajoa maqepheng a latelang: Debian, Ubuntu, Gentoo, RHEL, SUSE, Fedora, Gentoo, Arch.

Mathata a khetholloang:

  • CVE-2023-32254, CVE-2023-32250, CVE-2023-32257, CVE-2023-32258 - ts'ebetso ea khoutu e hole e nang le litokelo tsa kernel ka lebaka la khaello ea ho notlela ntho e nepahetseng ha o sebetsana le likopo tsa kantle tse nang le SMB2_TREE_DISCONNECTION_DISCONNECTION2MB_DISCONNESS2MB, SMB2_TREE_DISCONNECTIONXNUMXMB_SET SMBXNUMX_CLOSE, e bakang maemo a mabe a morabe. Tlhaselo e ka etsoa ntle le bopaki.
  • CVE-2023-32256 - E lutla likahare tsa libaka tsa kernel memory ka lebaka la maemo a morabe nakong ea ts'ebetso ea SMB2_QUERY_INFO le SMB2_LOGOFF litaelo. Tlhaselo e ka etsoa ntle le bopaki.
  • CVE-2023-32252, CVE-2023-32248 - Ho haneloa ha litšebeletso ka hole ka lebaka la NULL pointer dereference ha o sebetsana le litaelo tsa SMB2_LOGOFF, SMB2_TREE_CONNECT le SMB2_QUERY_INFO. Tlhaselo e ka etsoa ntle le bopaki.
  • CVE-2023-32249 - Monyetla oa ho koeteloa ha nako le mosebelisi ka lebaka la khaello ea ho itšehla thajana ha u sebetsana le ID ea lenaneo ka mokhoa oa liteishene tse ngata.
  • CVE-2023-32247, CVE-2023-32255 - Ho haneloa ha tšebeletso ka lebaka la ho lutla ha memori ha o sebetsana le taelo ea SMB2_SESSION_SETUP. Tlhaselo e ka etsoa ntle le bopaki.
  • CVE-2023-2593 ke ho haneloa ha ts'ebeletso ka lebaka la mokhathala oa mohopolo o teng, o bakoang ke ho hloleha ho hopola ha o sebetsana le likhokahano tse ncha tsa TCP. Tlhaselo e ka etsoa ntle le bopaki.
  • CVE-2023-32253 Ho haneloa ha tšebeletso ka lebaka la thipa nako ho etsahala ha ho sebetsoa taelo ea SMB2_SESSION_SETUP. Tlhaselo e ka etsoa ntle le bopaki.
  • CVE-2023-32251 - ho hloka tšireletso khahlanong le litlhaselo tse sehlōhō.
  • CVE-2023-32246 Mosebelisi oa sistimi ea lehae ea nang le tokelo ea ho laolla mojule oa ksmbd a ka fihlela ts'ebetso ea khoutu maemong a kernel ea Linux.

Ho feta moo, bofokoli bo bong bo 5 bo ile ba khetholloa ka har'a sephutheloana sa lisebelisoa tsa ksmbd, se kenyeletsang lisebelisoa tsa ho laola le ho sebetsa le ksmbd, tse etsoang sebakeng sa basebelisi. Bofokoli bo kotsi ka ho fetisisa (ZDI-CAN-17822, ZDI-CAN-17770, ZDI-CAN-17820, CVE e e-s'o abeloe) e lumella mohlaseli ea hōle, ea sa netefatsoang ho phethahatsa khoutu ea bona ka litokelo tsa metso. Litšitiso li bakoa ke khaello ea ho lekola boholo ba data e amohetsoeng pele u e kopiletsa ho buffer ho khoutu ea litšebeletso ea WKSSVC le ho LSARPC_OPNUM_LOOKUP_SID2 le SAMR_OPNUM_QUERY_USER_INFO lisebelisoa tsa opcode. Likotsi tse ling tse peli (ZDI-CAN-17823, ZDI-CAN-17821) li ka lebisa ho haneloa ha tšebeletso ntle le bopaki.

Ksmbd e hlahisoa e le katoloso ea Samba e sebetsang hantle, e kenelletseng e hokahaneng le lisebelisoa tsa Samba le lilaeborari ha ho hlokahala. Ts'ehetso ea ho tsamaisa seva sa SMB ho sebelisa mojule oa ksmbd esale e le teng ka har'a sephutheloana sa Samba ho tloha ha e lokolloa 4.16.0. Ho fapana le seva sa SMB se sebetsang sebakeng sa basebelisi, ksmbd e sebetsa hantle haholoanyane mabapi le ts'ebetso, ts'ebeliso ea mohopolo, le kopanyo e nang le bokhoni bo tsoetseng pele ba kernel. ka Steve French oa Microsoft, mohlokomeli oa litsamaiso tse nyane tsa CIFS/SMB2/SMB3 kernel ea Linux ebile e le setho sa nako e telele sa sehlopha sa nts'etsopele sa Samba, o entse tlatsetso e kholo ts'ebetsong ea ts'ehetso ea liprothokholo tsa SMB/CIFS ho Samba le Linux.

Ho phaella moo, ho ka hlokomeloa bofokoli ba babeli ho mokhanni oa litšoantšo oa vmwgfx, o sebelisetsoang ho kenya ts'ebetsong ho potlakisa ha 3D libakeng tsa VMware. Kotsi ea pele (ZDI-CAN-20292) e lumella mosebelisi oa lehae ho eketsa litokelo tsa bona tsamaisong. Ho ba kotsing ho bakoa ke ho hloka ho hlahloba boemo ba buffer pele u e lokolla ha u sebetsana le vmw_buffer_object, e leng se ka lebisang ho pitso e habeli mosebetsing oa mahala. Bofokoli ba bobeli (ZDI-CAN-20110) bo lebisa ho lutla ha memori ea kernel ka lebaka la liphoso tsa ho hlophisa ho notlela lintho tsa GEM.

Source: opennet.ru

Eketsa ka tlhaloso