Kukho ubuthathaka (CVE-2023-5178) obuchongiweyo kwinkqubo engaphantsi yeLinux nvmet-tcp (NVMe-oF/TCP), evumela ukufikelela kwiidrive zeNVMe ngenethiwekhi (NVM Express over Fabrics) kusetyenziswa iprotocol yeTCP. Olu buthathaka lunokuvumela ukwenziwa kwekhowudi ekude kwinqanaba lekernel okanye, ngokufikelela kwendawo, ukunyuka kwamalungelo kwinkqubo. Ukulungiswa okwangoku kufumaneka njenge-patch. Ingxaki ibikho ukususela kwinguqulelo yokuqala yomqhubi weNVMe-oF/TCP (ingxelo yobuthathaka ikhankanya iLinux kernel 5.15, kodwa inkxaso yeNVMe-oF/TCP yongezwe kwikernel 5.0). Iinkqubo ezineNVMe-oF/TCP enikwe amandla zibuthathaka kubuthathaka. umncedisi I-NVMe-oF/TCP (NVME_TARGET_TCP), eyamkela uqhagamshelo kwizibuko lenethiwekhi 4420 ngokuzenzekelayo.
Ukuba semngciphekweni kubangelwa impazamo esengqiqweni ngenxa yokuba umsebenzi we-nvmet_tcp_free_crypto wabizwa kabini kwaye wakhulula ezinye izikhombisi kabini, kunye needilesi ezikhululekileyo. Oku kuziphatha kukhokelela kunikezelo kwindawo yenkumbulo esele ikhululwe (ukusetyenziswa-emva-kwesimahla) kunye nokuphinda kukhululwe inkumbulo (okuphindwe kabini) xa umncedisi we-NVMe-oF/TCP eqhuba umyalezo ofomathiweyo ngokukodwa kumxhasi, onokubekwa zombini. kuthungelwano lwasekhaya kunye nehlabathi jikelele.
umthombo: opennet.ru
