Ubungqina bengcamango yokuba sesichengeni bupapashwe. I-DirtyDecrypt, kwaziwa njenge I-DirtyCBC, okuvumela umsebenzisi wasekhaya ongenamalungelo ukuba afumane amalungelo eengcambu kwezinye iinkqubo LinuxIngxaki ikwikhowudi. rxgk iinkqubo ezingaphantsi RxRPC kwaye inxulumene nokubhala kwe-cache yephepha ngenxa yokungabikho kwe-copy-on-write check kumsebenzi we-rxgk_decrypt_skb(). I-PoC yapapashwa ngoMeyi 18, 2026, yiBleepingComputer; i-PoC ngokwayo iposiwe kwi Iindawo zokugcina izinto zeqela le-V12.
I-RxRPC yiprotocol yenethiwekhi yekernel. Linux ngaphezulu kwe-UDP, ebonelela ngothutho oluthembekileyo kwimisebenzi ekude. Uxwebhu lwe-kernel luchaza ngokuthe ngqo ukuba AFS — I-Andrew File System ngumzekelo wesicelo esisebenzisa i-RxRPC, kwaye iprotokholi ngokwayo ixhasa iingxoxo zokhuseleko loqhagamshelo. Kulapho i-RxGK, esetyenziselwa imo ekhuselekileyo ye-RxRPC/AFS, isebenzayo khona.
Ngokwenkcazo ye-V12, i-DirtyDecrypt lolunye uhlobo lodidi lobuthathaka I-CopyFail / Iqhekeza Elingcolileyo / I-FragnesiaZonke zijikeleza kwingcamango efanayo: ukuphathwa gwenxa kwememori yekernel, i-page cache, kunye nee-buffers kunokuvumela inkqubo yendawo engenamalungelo ukuba ichaphazele idatha ekufanele ukuba ingabhalwa. Kwimeko ye-DirtyDecrypt, le yi-"rxgk pagecache write" ngenxa yokhuseleko lwe-COW olungekhoyo kwi-rxgk_decrypt_skb().
Iqela le-V12 lithi liyifumene kwaye liyixele le ngxaki. 9 Ngama-2026 iminyaka, kodwa abagcini bekernel baphendule bathi yayiyikopi yebug esele ilungisiwe. Abaphandi emva koko bapapasha ubungqina bengcamango, besithi ukulungiswa sele kukwikernel ephambili.
Imeko ngee-CVE ayibonakali ilula ngokupheleleyo. I-BleepingComputer ibika ukuba akukho CVE isemthethweni eyahlukileyo yegama le-DirtyDecrypt ngexesha lokupapashwa, kodwa umhlalutyi uWill Dormann udibanisa iinkcukacha ezipapashwe yi-V12 kunye I-CVE-2026-31635, ilungisiwe ekupheleni kuka-Epreli. I-NVD ichaza i-CVE-2026-31635 njengempazamo kwi-rxrpc: umsebenzi we-rxgk_verify_response() ujonge ngokungafanelekanga ubude be-RESPONSE authenticator, nto leyo enokubangela ukuba i-authenticator ende kakhulu idluliselwe kwi-rxgk_decrypt_skb() kwaye ibangele ukuba ikhowudi ingaphumeleli kwi-BUG_ON(len).
Oko kukuthi, iimpapasho ezifumaneka esidlangalaleni zidibanisa i-DirtyDecrypt ne I-CVE-2026-31635, kodwa inkcazo ye-CVE esemthethweni kwi-NVD okwangoku ibonakala incinci kwaye ibhekisa ikakhulu kwimpazamo yokujonga ubude kwi-rxrpc, endaweni yokubhekisa ngqo kwi-alias ye-DirtyDecrypt/DirtyCBC njengongeniso olwahlukileyo. Ke ngoko, kuchanekile ngakumbi ukubhala: I-DirtyDecrypt inokwenzeka ukuba ihambelana okanye inxulumene ngokusondeleyo ne-CVE-2026-31635, endaweni yokuba bathi ligama elisemthethweni le-CVE.
I-kernel enolu khetho luvuliwe iyafuneka ukuze isebenze. I-CONFIG_RXGK, equka inkxaso ye-RxGK kumthengi we-AFS kunye nothutho lwenethiwekhi. Oku kunciphisa kakhulu uluhlu lweenkqubo ezichaphazelekayo: ngokuyintloko, kuphathelele ukusasazwa okulandela ngokukhawuleza i-kernel ephezulu, kubandakanya Fedora, igophe Linux и vulaSUSE TumbleweedI-BleepingComputer igxininisa ukuba i-V12 PoC epapashiweyo ivavanyiwe kuphela kwi-Fedora nakwi-kernel ephambili.
I-DirtyDecrypt ivele emva koluhlu olupheleleyo lweemveliso ezifanayo Linux Ubuthathaka be-LPE. Ngaphambili kutyhilwe Ukukopa Kuhlulekile kwi-algif_aead, Iqhekeza Elingcolileyo kwiinxalenye zenethiwekhi, uze emva koko I-Fragnesia kwi-XFRM ESP-in-TCP Microsoft ichazwe I-Dirty Frag njengokunyuka kwamalungelo endawo ngokusebenzisa iinxalenye ze-esp4, esp6, kunye ne-rxrpc, okuvumela umhlaseli ukuba afumane ukufikelela kwendawo aze afumane indawo kwinkqubo.
Ingozi ebonakalayo yezi mpazamo kukuba zihlala zisetyenziswa emva kokwaphulwa kokuqala: umzekelo, emva kokubeka emngciphekweni iakhawunti ye-SSH, ishell yewebhu, isikhongozeli esisengozini, okanye umsebenzisi wenkonzo onelungelo eliphantsi. Emva kokuba efumene ukufikelela kwiingcambu, umhlaseli unokukhubaza ulawulo lokhuseleko, afunde iimfihlo, atshintshe iilog, asebenzise unyamezelo, aze ahambe phambili kwiziseko zophuhliso.
Abasebenzisi beenkqubo ezinokuthi zichaphazeleke ekukhutshweni kwe-rolling-release bayacetyiswa ukuba bafake uhlaziyo lwamva nje lwe-kernel. Kwiinkqubo apho uhlaziyo olukhawulezileyo lungenakwenzeka, iimpapasho zikhankanya izisombululo zexeshana ezifana nokukhubaza iimodyuli ze-rxrpc ezingasetyenziswanga kunye nezinto ezinxulumene nazo. Nangona kunjalo, ezo ndlela zokucombulula iingxaki zinokuphula i-AFS kunye nezinye iimeko ze-IPsec/VPN, ngoko ke kufuneka zisetyenziswe kuphela emva kokuqinisekisa impembelelo kwinkqubo ethile.
Kwiinkqubo ezininzi zedesktop kunye neeseva, umngcipheko unokuba uphantsi kuneCopy Fail: DirtyDecrypt ifuna uqwalaselo oluthile lwekernel kunye nokuphunyezwa kwekhowudi yendawo. Nangona kunjalo, kwiFedora, iArch Linux, i-openSUSE Tumbleweed, kunye nezinye iinkqubo ezinohlaziyo olukhawulezayo lwe-kernel, le ngxaki ifanele iqwalaselwe: ayiseyiyo ingxelo yethiyori, kodwa bubuthathaka obunobungqina obupapashweyo bengcamango kunye nendlela ecacileyo yokunyuka kwamalungelo.
umthombo: linux.org.ru
