ProHoster > Ibhulogi > iindaba ze-intanethi > Ubuthathaka kwimodyuli yeLinux kernel ksmbd evumela ukwenziwa kwekhowudi ekude

Ubuthathaka kwimodyuli yeLinux kernel ksmbd evumela ukwenziwa kwekhowudi ekude

Kwimodyuli ye-ksmbd, enika ukuphunyezwa komncedisi wefayile esekelwe kwiprotocol ye-SMB eyakhelwe kwi-Linux kernel, ubuthathaka be-14 ichongiwe, ezine ezivumela ukuba umntu enze ukude ikhowudi yakhe ngamalungelo e-kernel. Uhlaselo lunokwenziwa ngaphandle kokuqinisekiswa kwanele ukuba imodyuli ye-ksmbd isebenze kwinkqubo. Iingxaki zivela ukusuka kwi-kernel 5.15, ebandakanya imodyuli ye-ksmbd. Ubuthathaka bulungiswe kwi-kernel updates 6.3.2, 6.2.15, 6.1.28 kunye ne-5.15.112. Unokulandelela izilungiso kunikezelo kula maphepha alandelayo: Debian, Ubuntu, Gentoo, RHEL, SUSE, Fedora, Gentoo, Arch.

Imiba ichongiwe:

  • CVE-2023-32254, CVE-2023-32250, CVE-2023-32257, CVE-2023-32258 - ukuphunyezwa kwekhowudi ekude ngamalungelo e-kernel ngenxa yokunqongophala kwezinto ezifanelekileyo zokutshixa xa kusetyenzwa izicelo zangaphandle eziqulathe i-SMB2_TREE_DISCONNECTION_DISCONNECTION2MB, SMB2_TREE_DISCONNECTION_DISCONNECTION2MB SMBXNUMX_CLOSE, ekhokelela kwimeko yogqatso olusebenzisekayo. Uhlaselo lunokwenziwa ngaphandle kokuqinisekiswa.
  • CVE-2023-32256 - Ukuvuza imixholo yememori ye-kernel yemimandla ngenxa yemeko yogqatso ngexesha lokucutshungulwa kwe-SMB2_QUERY_INFO kunye ne-SMB2_LOGOFF imiyalelo. Uhlaselo lunokwenziwa ngaphandle kokuqinisekiswa.
  • I-CVE-2023-32252, CVE-2023-32248 - Ukwaliwa kwenkonzo ekude ngenxa ye-NULL pointer dereference xa kusenziwa i-SMB2_LOGOFF, SMB2_TREE_CONNECT kunye ne-SMB2_QUERY_INFO imiyalelo. Uhlaselo lunokwenziwa ngaphandle kokuqinisekiswa.
  • I-CVE-2023-32249 -Inokwenzeka yokuphanga iseshoni kunye nomsebenzisi ngenxa yokunqongophala kokuzihlukanisa ngokufanelekileyo xa ubamba i-ID yeseshoni kwimodi yamajelo amaninzi.
  • CVE-2023-32247, CVE-2023-32255 - Ukwaliwa kwenkonzo ngenxa yokuvuza kwememori xa kusenziwa umyalelo we-SMB2_SESSION_SETUP. Uhlaselo lunokwenziwa ngaphandle kokuqinisekiswa.
  • I-CVE-2023-2593 kukukhanyela kwenkonzo ngenxa yokudinwa kwememori ekhoyo, ebangelwa ukusilela kwememori xa kusetyenzwa uxhulumaniso olutsha lwe-TCP. Uhlaselo lunokwenziwa ngaphandle kokuqinisekiswa.
  • CVE-2023-32253 Ukwalelwa kwenkonzo ngenxa yokuvalwa kwenzeka xa kusetyenzwa SMB2_SESSION_SETUP umyalelo. Uhlaselo lunokwenziwa ngaphandle kokuqinisekiswa.
  • I-CVE-2023-32251 - ukungabikho kokhuseleko kuhlaselo lwamandla.
  • I-CVE-2023-32246 Umsebenzisi wenkqubo yendawo onelungelo lokukhulula imodyuli ye-ksmbd unokufezekisa ukuphunyezwa kwekhowudi kwinqanaba le-Linux kernel.

Ukongeza, ubuthathaka obungaphezulu obu-5 bachongwa kwiphakheji yezixhobo ze-ksmbd, equka izinto eziluncedo zokulawula nokusebenza nge-ksmbd, ezenziwa kwindawo yomsebenzisi. Obona buthathaka bunobungozi (ZDI-CAN-17822, ZDI-CAN-17770, ZDI-CAN-17820, CVE ayikabelwa) vumela umhlaseli okude, ongagunyaziswanga ukuba enze ikhowudi yawo ngamalungelo engcambu. Ubuthathaka bubangelwa kukunqongophala kokujonga ubungakanani bedatha yangaphandle efunyenweyo phambi kokuba uyikhuphele kwisithinteli kwikhowudi yenkonzo yeWKSSVC nakwi-LSARPC_OPNUM_LOOKUP_SID2 kunye ne-SAMR_OPNUM_QUERY_USER_INFO iziphangi ze-opcode. Ubuthathaka obubini obungakumbi (i-ZDI-CAN-17823, i-ZDI-CAN-17821) inokukhokelela ekukhanyeni okude kwenkonzo ngaphandle kokuqinisekiswa.

I-Ksmbd ichazwa njengomsebenzi ophezulu, ulwandiso lwe-Samba oluzinzisiweyo oludityaniswa nezixhobo zeSamba kunye namathala eencwadi njengoko kufuneka. Inkxaso yokuqhuba iseva ye-SMB usebenzisa imodyuli ye-ksmbd ikhona kwiphakheji ye-Samba ukususela ekukhululweni kwe-4.16.0. Ngokungafaniyo nomncedisi we-SMB osebenza kwindawo yomsebenzisi, i-ksmbd isebenze ngakumbi ngokwemigaqo yokusebenza, ukusetyenziswa kwememori, kunye nokudibanisa kunye nezakhono ezithuthukisiweyo ze-kernel zifakwe nguNamjae Jeon we-Samsung kunye ne-Hyunchul Lee ye-LG, kwaye igcinwe njengenxalenye ye-kernel. nguSteve French weMicrosoft, umgcini we-CIFS/SMB2/SMB3 subsystems kwiLinux kernel kunye nelungu lexesha elide leqela lophuhliso leSamba, wenze igalelo elibalulekileyo ekuphunyezweni kwenkxaso yeSMB/CIFS protocol kwiSamba kunye Linux.

Ukongezelela, ubuthathaka obubini bunokuqatshelwa kwi-vmwgfx umqhubi wegraphic, esetyenziselwa ukuphumeza ukukhawuleza kwe-3D kwiindawo ze-VMware. Ubuthathaka bokuqala (i-ZDI-CAN-20292) ivumela umsebenzisi wendawo ukuba akhulise amalungelo abo kwinkqubo. Ukuba sesichengeni kungenxa yokunqongophala kokujonga imeko yesithinteli phambi kokuyikhulula xa kusetyenzwa i-vmw_buffer_object, enokubangela ukufowuna kabini kumsebenzi wasimahla. Ubuthathaka besibini (i-ZDI-CAN-20110) ikhokelela ekuvuzeni kwemixholo yememori ye-kernel ngenxa yeempazamo ekulungiseleleni ukutshixa izinto ze-GEM.

umthombo: opennet.ru

Yongeza izimvo