Kumqhubi we-vhost-net, oqinisekisa ukusebenza kwe-virtio net kwicala lokusingqongileyo, ukuba sesichengeni (), ivumela umsebenzisi wasekhaya ukuba aqalise ukuphuphuma kwe-kernel stack ngokuthumela ioctl efomathwe ngokukodwa (VHOST_NET_SET_BACKEND) kwisixhobo /dev/vhost-net. Ingxaki ibangelwa kukungabikho koqinisekiso olululo lwemixholo ye sk_family entsimini kwi get_raw_socket () ikhowudi yokusebenza.
Ngokwedatha yokuqala, ubuthathaka bunokusetyenziswa ukwenza uhlaselo lwe-DoS yendawo ngokubangela ukuphahlazeka kwe-kernel (akukho lwazi malunga nokusetyenziswa kokuphuphuma kwe-stack okubangelwa ukuba sengozini yokuququzelela ukuphunyezwa kwekhowudi).
Ukuba sesichengeni kuhlaziyo lwe-Linux kernel 5.5.8. Ukusasaza, unokulandelela ukukhutshwa kohlaziyo lwephakheji kumaphepha , , , , , .
umthombo: opennet.ru