Ukuba sengozini kudaluliwe (CVE-2021-4160) kulabhulali ye-cryptographic ye-OpenSSL ngenxa yephutha ekusetshenzisweni kwe-adder kumsebenzi we-BN_mod_exp, okuholele ekubuyiselweni komphumela ongalungile wokusebenza kwe-squaring. Udaba lwenzeka kuphela kuzingxenyekazi zekhompuyutha ezisuselwe kuzakhiwo ze-MIPS32 kanye ne-MIPS64, futhi zingaholela ebucayini be-algorithms yejika eliyi-elliptic, okuhlanganisa nalawo asetshenziswa ngokuzenzakalelayo ku-TLS 1.3. Inkinga yalungiswa kuzibuyekezo zikaDisemba OpenSSL 1.1.1m kanye no-3.0.1.
Kuyaphawulwa ukuthi ukuqaliswa kokuhlasela kwangempela ukuze kutholwe ulwazi mayelana nokhiye abayimfihlo kusetshenziswa inkinga ekhonjiwe kucatshangelwa i-RSA, i-DSA kanye ne-algorithm ye-Diffie-Hellman (DH, Diffie-Hellman) ngangokunokwenzeka, kodwa kungenzeki, inkimbinkimbi kakhulu ukuthi ingaqhutshwa futhi edinga izinsiza ezinkulu zekhompyutha. Kulokhu, ukuhlaselwa kwe-TLS akufakiwe, njengoba ngo-2016, lapho kususwa ukuba sengozini kwe-CVE-2016-0701, ukwabelana ngokhiye owodwa oyimfihlo we-DH phakathi kwamaklayenti kwakungavunyelwe.
Ukwengeza, ubungozi obuningana obusanda kukhonjwa kumaphrojekthi womthombo ovulekile bungaqashelwa:
- Ubungozi obuningi (CVE-2022-0330) kumshayeli wezithombe ze-i915 ngenxa yokuntuleka kokusetha kabusha kwe-GPU TLB. Uma i-IOMMU (ukuhumusha ikheli) ingasetshenziswa, ukuba sengozini kuvumela ukufinyelela kumakhasi enkumbulo angahleliwe kusuka esikhaleni somsebenzisi. Inkinga ingasetshenziselwa ukonakalisa noma ukufunda idatha evela ezindaweni zenkumbulo ezingahleliwe. Inkinga yenzeka kuwo wonke ama-Intel GPU ahlanganisiwe futhi ahlukene. Ukulungiswa kusetshenziswa ngokungeza ukugungiswa kwe-TLB okuyisibopho ngaphambi kokwenza umsebenzi ngamunye wokubuyisela ibhafa ye-GPU ohlelweni, okuzoholela ekusebenzeni okuncishisiwe. Umthelela wokusebenza uncike ku-GPU, imisebenzi eyenziwa ku-GPU, nomthwalo wesistimu. Ukulungiswa okwamanje kutholakala kuphela njengepheshi.
- Ukuba sengozini (CVE-2022-22942) kumshayeli wezithombe ze-vmwgfx, okusetshenziselwa ukusebenzisa ukusheshisa kwe-3D ezindaweni ze-VMware. Inkinga ivumela umsebenzisi ongenalo ilungelo ukuthi afinyelele amafayela avulwe ezinye izinqubo ohlelweni. Ukuhlasela kudinga ukufinyelela kudivayisi/dev/dri/card0 noma/dev/dri/rendererD128, kanye nekhono lokukhipha ikholi ye-ioctl() enencazelo yefayela ewumphumela.
- Ubungozi (CVE-2021-3996, CVE-2021-3995) kulabhulali ye-libmount enikezwe kuphakheji ye-util-linux ivumela umsebenzisi ongenalo ilungelo ukwehlisa izingxenye zediski ngaphandle kwemvume yokwenza kanjalo. Inkinga ikhonjwe ngesikhathi sokuhlolwa kwezinhlelo ze-SUID-root umount and fusermount.
- Ukuba sengozini kulabhulali ye-C evamile ye-Glibc ethinta indlela yangempela (CVE-2021-3998) nemisebenzi ye-getcwd (CVE-2021-3999).
- Inkinga ku-realpath() ibangelwa ukubuyisela inani elingalungile ngaphansi kwezimo ezithile, eziqukethe idatha eyinsalela engaxazululiwe evela kusitaki. Kuhlelo lwe-SUID-root fusermount, ukuba sengozini kungasetshenziswa ukuthola ulwazi olubucayi kusuka kumemori yenqubo, isibonelo, ukuthola ulwazi mayelana nezikhombi.
- Inkinga ku-getcwd() ivumela ukuchichima kwebhayithi yebhayithi yebhayithi. Inkinga idalwa yisiphazamisi esikhona kusukela ngo-1995. Ukuze ubangele ukuchichima, vele ushayele u-chdir() kuhla lwemibhalo "/" endaweni ehlukile yephoyinti lokukhweza. Alikho igama lokuthi ubungozi bukhawulelwe ekucubunguleni ukuphahlazeka, kodwa kube nezimo zokusebenzisa amandla okudalelwa ubungozi obufanayo esikhathini esidlule, ngaphandle kokungabaza konjiniyela.
- Ukuba sengozini (CVE-2022-23220) kuphakheji ye-usbview kuvumela abasebenzisi basendaweni abangene ngemvume nge-SSH ukuthi basebenzise ikhodi njengempande ngenxa yesilungiselelo emithethweni ye-PolKit (allow_any=yebo) yokusebenzisa insiza ye-usbview njengempande ngaphandle kokuqinisekisa . Umsebenzi wehlela ekusebenziseni inketho ethi “-gtk-module” ukuze ulayishe ilabhulali yakho ku-usbview. Inkinga ilungisiwe ku-usbview 2.2.
Source: opennet.ru