Kuphawulwe ukuba sengozini ku-Linux kernel (i-CVE ayabelwe) evumela umsebenzisi wasendaweni ukuthi athole amalungelo ezimpande ohlelweni. Kumenyezelwa ukuthi kulungiselelwe ukuxhashazwa okukhombisa ukuthola amalungelo ezimpande ku-Ubuntu 22.04. Isiqeshana esilungisa inkinga siphakanyiswe ukuthi sifakwe ku-kernel.
Ukuba sengozini kubangelwa ukufinyelela endaweni yenkumbulo esivele ikhululiwe (ukusebenzisa ngemva kwamahhala) lapho ushintsha isethi yohlu usebenzisa umyalo we-NFT_MSG_NEWSET kumojula ye-nf_tables. Ukuze wenze ukuhlasela, ukufinyelela kuma-nftables kuyadingeka, okungatholwa ezindaweni zamagama zenethiwekhi ezihlukene uma unamalungelo angu-CLONE_NEWUSER, CLONE_NEWNS noma CLONE_NEWNET (isibonelo, uma ungasebenzisa isiqukathi esingasodwa).
Source: opennet.ru