Nooca xasilloon ee OpenWrt 22.03.3 ayaa imanaya

Darkcrizt

Daqiiqado 4

FurWrt

OpenWrt waa qaybinta Linux-ka firmware-ku-saleysan oo ku dhex-jira aaladaha sida router-yada gaarka ah.

Siideynta nooca cusub ee xasilloon ee OpenWrt 22.03.3 ayaa hadda lagu dhawaaqay, nooc kaas waxay ku timaaddaa khaladaad kala duwan kuwaas oo Busybox, dnsmasq iyo hagaajinta kale ay taagan yihiin, marka lagu daro, qaar ka mid ah hagaajinta taageerada ee nooca cusub ayaa sidoo kale taagan.

Kuwa aan aqoon u lahayn OpenWrt, waa inaad ogaataa taas tani waa qaybinta Linux oo loogu talagalay in loogu isticmaalo aaladaha shabakadaha kala duwansida router-yada iyo meelaha laga soo galo.

FurWrt waxay taageertaa aalado badan iyo qaab dhismeedyo kala duwan iyo wuxuu leeyahay nidaam dhisid kuu ogolaanaya inaad sameysid qaab fudud oo sahlan oo iskutallaab ah, oo ay kujiraan qaybo badan oo ka mid ah isku imaatinka, taas oo sahleysa abuuritaanka qalab adeegsan ama muuqaal disk ah oo loogu talagalay hawlo gaar ah oo leh xirmooyin la doonayo -la dhigay

Wararka ugu muhiimsan ee OpenWrt 22.03.3

Noocan cusub ee laga soo bandhigay OpenWrt 22.03.3 ayaa lagu soo bandhigay cusboonaysiinta qaybaha nidaamka kala duwan, kuwaas oo aan ka heli karno Noocyada la cusboonaysiiyay ee kernel Linux 5.10.161 (nooca ku dara mac80211 xirmo wireless ah oo laga soo qaatay nooca 5.15.81), strace 5.19, mbdtls 2.28.2, openssl 1.1.1s, wolfssl 5.5.4, util-linux 2.37.4, firewall4 2022-10-18, odhcpd 2023-01-02, uhttpd 2022-10-31, iwinfo 2022-12-15, ucode 2022-12-02.

Iyadoo la socota Linux Kernel waxaa sidoo kale lagu xusay inay ku dareen xirmooyinka moduleka cusub ee kernel: kmod-sched-prio, kmod-sched-red, kmod-sched-act-police, kmod-sched-act-ipt, kmod-sched- pie, kmod-sched-drr, kmod-sched-fq-pie, kmod-sched-faci-muunada, kmod-nvme, kmod-phy-marvell, kmod-hwmon-sht3x, kmod-netconsole, iyo kmod-btsdio.

Dhinaca qaybta hagaajinta taageerada Waxaan ka heli karnaa noocaan cusub ee taageera Ruckus ZoneFlex 7372/7321, ZTE MF289F, TrendNet TEW-673GRU, Linksys EA4500 v3 iyo Wavlink WS-WN572HP3 4G aaladaha ayaa lagu daray.

Intaa waxaa dheer, waxaan sidoo kale ka heli karnaa in D-Link DIR-825 B1 goobaha sawirka nidaamka warshadda iyo xididdada fidsan lagu daray. Sida caadiga ah, firmware-ka loogu talagalay Broadcom 4366b1 chip ayaa lagu daray dhismaha Asus RT-AC88U.

Marka la eego sixitaanka, waxaan ogaan karnaa in dhibaatada dib u soo kabashada loop marka la isticmaalayo bootloader LZMA qalabka NETGEAR EX6150, HiWiFi HC5962, ASUS RT-N56U B1, Belkin F9K1109v1, D-Link DIR-645, ayaa la xaliyay. DIR-860L B1, NETIS WF2881 iyo ZyXEL WAP6805.

Waxaa sidoo kale la xusay in dhibaatada ku meelaynta cinwaannada WAN MAC aaladaha UniElec U7621-01, UniElec U7621-06, TP-Link AR7241, TP-Link TL-WR740N, TP-Link TL-WR741ND v4, Teltonika RUT230 -329ACN.

Ee baylahda go'an ayaa lagu sheegay

  • CVE-2022-30065: sanduuqa mashquulka ah: Ku hagaaji isticmaalka-kadib-la'aanta gudaha Busybox 1.35-x's
    cawk tufaax
  • CVE-2022-0934: dnsmasq: Hagaaji qor/isticmaalka hal-byte aan sabab lahayn.
    Guuldarrooyinka boostada bilaashka ah ee server-ka dnsmasq DHCPv6
  •  CVE-2022-1304: e2fsprogs: nuglaanta wax akhrinta/qorista ee ka baxsan xadka
    waxaa laga helay e2fsprogs 1.46.5
  • CVE-2022-47939: kmod-ksmbd: ZDI-22-1690: Linux Kernel ksmbd Isticmaalka-
    Nuglaanta Fulin Koodhka Fog ee Xorta ah Kadib
  • CVE-2022-46393: mbedtls: hagaaji akhrinta xad dhaafka ah ee suurtagalka ah
    Dib u qorid
  • CVE-2022-46392: mbdtls: cadow helida xog sax ah oo ku filan
    macluumaadka ku saabsan gelitaanka xusuusta ayaa soo ceshan kara furaha gaarka ah ee RSA
  • CVE 2022-42905: wolfssl: Haddii ay dhacdo in WOLFSSL_CALLBACKS
    macro ayaa la dejiyaa marka la dhisayo wolfSSL, waxaa jira wax badan oo suurtagal ah oo ku saabsan
    5-byte akhri marka la qabanayo TLS 1.3 xidhiidhada macmiilka.

Ee isbeddelada kale taagan:

  • Qalabka Youku YK-L2 iyo YK-L1, initramfs-kernel.bin waxaa lagu rakibi karaa iyada oo loo marayo is-dhexgalka shabakadda ee soo saaraha.
  • D-Link DGS-1210-10P waxay taageertaa badhamada dheeraadka ah iyo tilmaamayaasha LED.
  • Darawalka USB ayaa lagu daray golaha AVM FRITZ!Box 7430.
  • Xakamaynta maqalka ayaa lagu daray HAOYU Electronics MarsBoard A10.
    Linksys EA6350v3, EA8300, MR8300, iyo WHW01 aaladaha ayaa cusbooneysiin kara firmware-ka bannaanka sanduuqa.
    Shil go'an oo boot ah oo wata firewall4 iyo loadfile.
  • Faylasha firmware ee lagu daray mt7916 iyo mt7921.
  • Xirmada ustream-openssl waxay joojisaa gorgortanka xidhiidhka ee ku salaysan TLSv1.2 iyo noocyadii hore ee borotokoolka.
  • Taageerada lagu daray modem-ka Quectel EC200T-EU ee xirmada comgt-ncm.
  • Umbim utility wuxuu ogolaadaa ku-wareejinta iyo isku xirka shabakadaha lammaanaha.
  • Taageerada hababka HE (Wifi 6), aaladaha cusub (MT7921AU, MT7986 WiSoC) iyo ciphers dheeraad ah (CCMP-256, GCMP-256) ayaa lagu daray utility iwinfo.

Hadaad rabto inaad waxbadan ka ogaato wixii faahfaahin ah ee ku dhex jira sii deynta cusub ee firmware OpenWrt 22.03.3 waxaad ka eegi kartaa macluumaadka daabacaadda asalka ah Xiriirka soo socda.

Soo deji nooca cusub ee OpenWrt 22.03.3

Dhismayaasha noocyadan cusub waxaa loo diyaariyey 35 aagag kala duwan, oo laga heli karo xirmooyinka cusbooneysiinta ka soo xiriir khadkan hoose.


Ka tag faalladaada

cinwaanka email aan la daabacin doonaa. Beeraha loo baahan yahay waxaa lagu calaamadeeyay la *

*

*

  1. Ka mas'uul ah xogta: AB Internet Networks 2008 SL
  2. Ujeedada xogta: Xakamaynta SPAM, maaraynta faallooyinka.
  3. Sharci: Oggolaanshahaaga
  4. Isgaarsiinta xogta: Xogta looma gudbin doono dhinacyada saddexaad marka laga reebo waajibaadka sharciga ah.
  5. Kaydinta xogta: Macluumaadka ay martigelisay Shabakadaha Occentus (EU)
  6. Xuquuqda: Waqti kasta oo aad xadidi karto, soo ceshan karto oo tirtiri karto macluumaadkaaga.