Ku-FreeBSD, ukuba sengozini (CVE-2022-23093) kukhonjwe ekusetshenzisweni kwe-ping okufakwe ekusabalaliseni okuyisisekelo. Inkinga ingase iholele ekusebenziseni ikhodi yesilawuli kude ngamalungelo empande lapho iphinga umsingathi wangaphandle olawulwa umhlaseli. Ukulungiswa kunikezwe kuzibuyekezo ze-FreeBSD 13.1-RELEASE-p5, 12.4-RC2-p2 kanye ne-12.3-RELEASE-p10. Okwamanje akukacaci ukuthi ezinye izinhlelo ze-BSD ziyathinteka yini ngokuba sengozini okuhlonziwe (ayikho imibiko yobungozi ku-NetBSD, DragonFlyBSD naku-OpenBSD okwamanje).
Ukuba sengozini kubangelwa ukuchichima kwebhafa kukhodi yokuhlaziya yemilayezo ye-ICMP etholwe kuphendulwa isicelo sokuqinisekisa. Ikhodi yokuthumela nokwamukela imilayezo ye-ICMP ku-ping isebenzisa amasokhethi eluhlaza futhi yenziwa ngamalungelo aphakeme (insiza iza nefulegi lempande ye-setuid). Impendulo icutshungulwa ohlangothini lwe-ping ngokwakhiwa kabusha kwezihloko ze-IP kanye ne-ICMP zamaphakethe atholwe kusokhethi eluhlaza. Izihloko ezikhethiwe ze-IP kanye ne-ICMP zikopishwa kumabhafa nge-pr_pack(), ngaphandle kokucabangela ukuthi izihloko ezengeziwe ezinwetshiwe zingase zibe khona ephaketheni ngemva kwesihloko se-IP.
Izihloko ezinjalo zikhishwa ephaketheni futhi zifakwe kunhlokweni, kodwa azinakwa lapho kubalwa usayizi webhafa. Uma umsingathi, ephendula isicelo esithunyelwe se-ICMP, ebuyisela iphakethe elinezihloko ezengeziwe, okuqukethwe kwazo kuzobhalwa endaweni engaphezu komngcele webhafa esitakini. Njengomphumela walokho, umhlaseli angabhala ngaphezulu amabhayithi edatha angafika kwangu-40 kusitaki, okungenzeka avumele ikhodi yakhe ukuthi isebenze. Ubukhulu benkinga buncishiswa iqiniso lokuthi ngesikhathi kwenzeka iphutha, inqubo isesimweni sokuhlukaniswa kwekholi yesistimu (imodi yamandla), okwenza kube nzima ukuthola ukufinyelela kulo lonke uhlelo ngemuva kokusebenzisa ubungozi. .
Source: opennet.ru