ProHoster > Blog > litaba tsa inthanete > Bofokoli ho subsystem ea eBPF e lumellang ts'ebetso ea khoutu boemong ba Linux kernel

Bofokoli ho subsystem ea eBPF e lumellang ts'ebetso ea khoutu boemong ba Linux kernel

Lifokotsi tse peli tse ncha li se li fumanoe ka har'a eBPF subsystem, e u lumellang hore u tsamaise batho ba sebetsang ka har'a kernel ea Linux mochining o ikhethileng o nang le JIT. Bofokoli ka bobeli bo etsa hore ho khonehe ho sebelisa khoutu ea hau ka litokelo tsa kernel, kantle ho mochini o ikhethileng oa eBPF. Lintlha tse mabapi le mathata li phatlalalitsoe ke sehlopha sa Zero Day Initiative, se tsamaisang tlholisano ea Pwn2Own, eo selemong sena ho bonts'itsoeng litlhaselo tse tharo ho Ubuntu Linux tse neng li sebelisa bofokoli bo neng bo sa tsejoe pele (hore na bofokoli ba eBPF bo amana le litlhaselo tsena ha bo tlalehoe) .

  • CVE-2021-3490 - Bofokoli bo bakoa ke khaello ea tlhahlobo ea 32-bit ea kantle ho meeli ha o etsa ts'ebetso ea bitwise AND, OR, le XOR ho eBPF ALU32. Mohlaseli a ka nka monyetla oa phoso ena ho bala le ho ngola lintlha tse kantle ho meeli ea buffer e fanoeng. Bothata ba ts'ebetso ea XOR bo hlaha ho tloha ho kernel version 5.7-rc1, le AND le OR - ho qala ho tloha 5.10-rc1.
  • CVE-2021-3489 - Kotsi e bakoa ke phoso ts'ebetsong ea ring buffer mme e bakoa ke hore bpf_ringbuf_reserve function ha ea ka ea hlahloba monyetla oa hore boholo ba sebaka sa memori se abetsoeng bo ka ba tlase ho boholo ba sebele. ea ringbuf. Bothata bo hlaha ho tloha ha ho lokolloa 5.8-rc1.

Boemo ba ho ba le bofokoli ba ho ts'oara liphatlalatso bo ka lateloa maqepheng ana: Ubuntu, Debian, RHEL, Fedora, SUSE, Arch). Litokiso li fumaneha hape e le li-patches (CVE-2021-3489, CVE-2021-3490). Hore na taba e ka sebelisoa hampe ho ipapisitse le hore na mohala oa sistimi ea eBPF o ka fihlelleha ho mosebelisi. Mohlala, ho tlhophiso ea kamehla ho RHEL, tšebeliso ea tlokotsi e hloka hore mosebelisi a be le litokelo tsa CAP_SYS_ADMIN.

Ka thoko, re ka hlokomela tlokotsi e 'ngoe ho Linux kernel - CVE-2021-32606, e lumellang mosebelisi oa lehae ho phahamisetsa litokelo tsa bona boemong ba motso. Bothata bo 'nile ba bonahala ho tloha Linux kernel 5.11 mme e bakoa ke boemo ba morabe ts'ebetsong ea protocol ea CAN ISOTP, e leng se etsang hore ho khonehe ho fetola li-parameter tse tlamang socket ka lebaka la khaello ea ho beha linotlolo tse nepahetseng mosebetsing oa isotp_setsockopt() ha o sebetsana le folakha ea CAN_ISOTP_SF_BROADCAST.

Ka mor'a hore sekoti sa ISOTP se koaloe, setlamo ho sokete ea moamoheli se ntse se sebetsa, se ka tsoelang pele ho sebelisa mehaho e amanang le sokete ka mor'a hore mohopolo o amanang le bona o lokolloe (ho sebelisa-kamora-mahala ka lebaka la pitso ho sebopeho sa isotp_sock. e seng e lokolotsoe ha isotp_rcv() e bitsoa). Ka ho qhekella ha data, o ka fetisa pointer ho sk_error_report() ts'ebetso mme o phethe khoutu ea hau boemong ba kernel.

Source: opennet.ru

Eketsa ka tlhaloso