Kana dzikashandiswa, zvikanganiso izvi zvinogona kubvumira vanorwisa kuti vawane mukana usina mvumo kune ruzivo rwakadzama kana kuti kazhinji kukonzera matambudziko.
Mazuva mashoma apfuura nyaya yakabuda kuti kushaya simba kwakaonekwa (yatonyorwa pasi peCVE-2023-4273) mumutyairi weexFAT faira system inowanikwa muLinux kernel.
Dambudzikonhema mukuti mutongi anobvumira kana uchiisa chikamu chakagadzirwa, (semuenzaniso, nekudzvanya USB Flash ine hutsinye), rova stack mafashama, uye mhanyisa kodhi yako nekodzero dzekernel.
Dambudziko nderekuti: kodhi inofungidzira kuti zita refaira rinogara richiburitsa zita refaira rakabatanidzwa rinoenderana ne255 mavara (muganho ndeye 258 mavara, anosanganisira 1 yakawedzera hunhu kune null byte uye maviri ekuwedzera mavara ekushandura). Kuchengeta anopfuura 2 mavara ezita refaira mune seti yedhairekitori entries kutyora kwefomati yefaira, asi inogamuchirwa nemutyairi weLinux, asi zvakare inokonzeresa kuwanda (nekuti iro zita refaira rinobatanidzwa mune shanduko yakagoverwa nestack).
Nezvekusagadzikana, kunotaurwa kuti, izvi uyes kushandiswa nekuda kwekutadza kutarisa saizi kukopa zita refaira kune stack-yakagoverwa buffer inoguma mu kernel stack kufashukira kana zita rakareba kwazvo refaira richipihwa rinopfuura mafaera emuganho we255 mavara.
Basa re exfat_extract_uni_name() rinomira kukopa mavara kunzvimbo yekuenda kana munhu asina maturo (0x0000) asangana uye anodzorera nhamba yemavara akakopwa. Asi munhu anofona anofuratira kukosha kwekudzoka uye anosimudzira chinongedzo mavara gumi nemashanu (15 bytes) kune inotevera iteration. Naizvozvo, zvinokwanisika kusvetuka (siya zvakadaro) mavara gumi nemana kana 30 bytes mune imwe iteration.
Kunetseka iripo mune basa rinogadzira zita refu rekuvaka patsva uchiverenga marekodhi ane zvikamu zvezita refaira kubva kune dhairekitori index uye kubatanidza zvikamu zvezita zvinobuda muzita rekupedzisira.
Saizi yekutarisa mukodhi yebasa iroro yakaitwa maererano nekupinda kwega kwega nechikamu chezita, asi haina kuvhara zita rekupedzisira (semuenzaniso, zita rinogona kupatsanurwa kuita zvikamu zana uye kusvika kune 100 mavara pachinzvimbo che1500 mavara mubuffer. )
Muongorori uyo akawana kusagadzikana akakwanisa kugadzirira prototype kushandiswa iyo inokubvumira kuti uwedzere ropafadzo dzako pane system. Kana yakaedzwa paVirtualBox chaiyo muchina, kushandiswa kunoshanda 100% yenguva, asi kana ichimhanya munzvimbo yakajairika inomhanya pamusoro pehardware, mukana wekukonzeresa unodonha kusvika pa50%.
Kunyanya, kubiridzira kwangu kunonyora nhongedzo-yakagoverwa kune tambo isina-yakagumiswa, saka kuedza kunotevera kwekuwedzera kumisa hunhu kune iyi tambo kunobva kwave kwechinyakare "nyora null byte kunzvimbo yendangariro yakasarudzwa neanorwisa.
Izvo zvinotaurwa zvakare kuti kusazvibata kunogona kushandiswa kukanganisa kernels yakabhurwa muUEFI Chengetedza Boot mode, sezvo ichitaura kuti chifananidzo chine kernel inotambura, ine init script inoenderana (uye iyo inoshandiswa, hongu), iyo inotanga pamberi peiyo chaiyo yekushandisa system, inoiswa pane bootable drive. Kana yakabhurwa, chifananidzo ichi chinotakura kernel module ine hutsinye (uye isina kusaina), iyo inomisikidza kutonga kwayo pamusoro pe kernel modhi uye wozochinja kune chaiyo inoshanda sisitimu (semuenzaniso, uchishandisa kexec call).
Pakupedzisira zvakakodzera kutaura kuti dambudziko rakagadziriswa mushanduro dzeLinux dzichiri kutsigirwa. Panguva yekuburitswa kwekusagadzikana, iyo yazvino Linux Kernel vhezheni yaive Linux vhezheni 6.4.10, asi iyo itsva vhezheni 6.5 yatove nekugadzirisa.
Kune avo vanofarira kuronda mhinduro mukugovera kwakasiyana, vanogona kuzviita kubva pamapeji anotevera: Debian, Ubuntu, RHEL, suse y Fedora.
Kana uri kuda kuziva zvakawanda nezvazvo, unogona kutarisa ruzivo mu inotevera chinongedzo.