Kumshayeli ofakwe ku-Linux kernel rtlwifi ama-adaptha angenawaya kuma-chips e-Realtek ikhonjiwe ubungozi (I-CVE-2019-17666), okungase kusetshenziswe kabi ukuhlela ukusetshenziswa kwekhodi kumongo we-kernel lapho kuthunyelwa ozimele abaklanywe ngokukhethekile.
Ukuba sengozini kubangelwa ukuchichima kwebhafa kukhodi esebenzisa imodi ye-P2P (Wifi-Direct). Lapho uhlaziya ozimele Cha (Isaziso Sokungabikho) asikho isheke sosayizi welinye lamanani, okuvumela umsila wedatha ukuthi ubhalwe endaweni engale komngcele webhafa kanye nolwazi oluzobhalwa kabusha ezinhlakeni ze-kernel ngokulandela ibhafa.
Ukuhlasela kungenziwa ngokuthumela amafreyimu aklanywe ngokukhethekile ohlelweni olune-adaptha yenethiwekhi esebenzayo esekelwe ku-chip ye-Realtek esekela ubuchwepheshe. I-Wi-Fi Direct, okuvumela ama-adaptha amabili angenantambo ukuthi asungule uxhumano ngqo ngaphandle kwendawo yokufinyelela. Ukuxhaphaza inkinga, umhlaseli akadingi ukuxhunywa kunethiwekhi engenantambo, futhi akudingekile ukuba enze noma yiziphi izenzo ngasohlangothini lomsebenzisi; kwanele ukuthi umhlaseli abe ngaphakathi kwendawo ekhavayo ye-wireless. isignali.
I-prototype esebenzayo yokuxhashazwa okwamanje ikhawulelwe ekudaleni ukude i-kernel ukuthi iphahlazeke, kodwa ukuba sengozini okungaba khona akubandakanyi ithuba lokuhlela ukukhishwa kwekhodi (ukucatshangelwa kusesengokwethiyori kuphela, njengoba singekho isibonelo sokuxhashazwa kokusetshenziswa kwekhodi. nokho, kodwa umcwaningi ohlonze inkinga usenayo kakade ΡΠ°Π±ΠΎΡΠ°Π΅Ρ ekudalweni kwayo).
Inkinga iqala ku-kernel 3.12 (ngokweminye imithombo, inkinga ibonakala iqala ku-kernel 3.10), ekhishwe ngo-2013. Ukulungisa okwamanje kutholakala kuphela ngefomu isichibi. Ekusabalaliseni inkinga ihlala ingalungiswa.
Ungakwazi ukwengamela ukuqedwa kobungozi ekusabalaliseni kulawa makhasi: Debian, SUSE/openSUSE, RHEL, Ubuntu, I-Arch Linux, Fedora. Mhlawumbe futhi abasengozini kuyathinta kanye nenkundla ye-Android.
Source: opennet.ru