Ubuthathaka obuninzi beLinux WLAN efunyenweyo evumela ukwenziwa kwekhowudi ekude

Mva nje kwakhutshwa iindaba zokuba inani lobuthathaka lichongiwe kwi-wireless stack (mac80211) ye-Linux kernel, ezinye zazo ezinokwenzeka vumela ukuphuphuma kwebuffer kunye nokuphunyezwa kwekhowudi ekude ngokuthumela iipakethi eziyilwe ngokukodwa ngendawo yofikelelo. Ulungiso lufumaneka kuphela njengepatch ukuza kuthi ga ngoku.

Umphandi wokhuseleko ovela eTU UDarmstadt nguye owachaza ingxaki ku-SUSE inxulumene nokubhala ngaphezulu kwesithinteli ngaphakathi kwesakhelo se-mac80211 ye-Linux kernel eqaliswe zizakhelo zeWLAN.

Ngelixa usenza uphando kunye ne-Intel, kunyeBafumene ezinye iingxaki ezininzi, Yintoni eyenza le miba yokhuseleko ye-WiFi ibe yingxaki ngakumbi kukuba inokuxhatshazwa emoyeni ngeepakethi ezinobungozi kwiinethiwekhi ezingenazingcingo ezingathembekanga.

Sinikezele ngengxaki kubantu abangundoqo bokhuseleko, kunye noSoenke kunye
UJohannes Berg we-Intel uvavanye waza wasebenza kule ngxaki.

Ngexesha lophando lwabo bafumana iingxaki ezininzi kwi-WLAN
imfumba, ixhaphake emoyeni.

Iseti yesiqwenga yathunyelwa kuluhlu lwe-netdev umzuzwana odlulileyo kwaye
zidityanisiwe kwiiyure/iintsuku ezimbalwa ezizayo.

• I-CVE-2022-41674: Ukuphuphuma kwe-Buffer ku-cfg80211_update_notlisted_nontrans function, ivumela ukuya kuthi ga kwi-256 bytes ukuba ibhalwe ngaphezulu kwimfumba. Ubuthathaka bubonakalisiwe ukusukela kwiLinux kernel 5.1 kwaye ingasetyenziselwa ukwenziwa kwekhowudi ekude.
• I-CVE-2022-42719: ukufikelela kwindawo yememori esele ikhululwe (sebenzisa emva kwesimahla) kwikhowudi yokwahlulahlula ye-MBSSID. Ukuba sesichengeni kubonakala ukususela kwi-Linux kernel 5.2 kwaye ingasetyenziselwa ukuphunyezwa kwekhowudi ekude. Isiphene sokusetyenziswa emva kwe-free safunyanwa kwi- ieee802_11_parse_elems_full kwi-function net/mac80211/util.c kwisiqalelo se-multi-BSSID. Lo mba wenzeka ngexesha lokwahlulahlula kwi-Linux kernel.
• I-CVE-2022-42720: ireferensi yosetyenziso-emva-kwendawo yememori esimahla kwikhowudi yokubala yereferensi kwimo ye-BSS (iSeti yeNkonzo eSiseko). Ubuthathaka bubonakalisiwe ukusukela kwiLinux kernel 5.1 kwaye ingasetyenziselwa ukwenziwa kwekhowudi ekude. Abahlaseli bendawo (abakwaziyo ukutofa izakhelo zeWLAN) banokusebenzisa iibhugi ezahlukeneyo zokubala kwakhona ekuphatheni ii-BSS ezininzi kwi-mac80211 stack kwi-Linux kernel 5.1 ukuya ku-5.19.x ngaphambi kwe-5.19.16 ukuqalisa iimeko zokusetyenziswa emva kwesimahla ukwenzela ikhowudi enokwenzeka.
• I-CVE-2022-42721: Uluhlu lwempazamo yorhwaphilizo lufunyenwe kwi-cfg80211_add_nontrans_list kumsebenzi womnatha/wireless/scan.c kwi-Linux kernel. Ibangela uluhlu lwe-BSS urhwaphilizo olubangela i-loop engapheliyo. Ubuthathaka bubonakalisiwe ukusukela kwiLinux kernel 5.1 kwaye ingasetyenziselwa ukwenza ukwaliwa kwenkonzo.
• I-CVE-2022-42722: Isiphene kwisixhobo se-P2P kwi-wifi sifunyenwe kwi-ieee80211_rx_h_decrypt kwi-net/mac80211/rx.c kwi-Linux kernel. Isalathiso esingekho ngqiqweni kwikhowudi yokukhusela isakhelo sebhikhoni. Ingxaki ingasetyenziselwa ukwenza ukwaliwa kwenkonzo.

Ukubonisa ukuba kunokwenzeka ukwenza uhlaselo ukuthatha ithuba lebugs ezifunyenweyo, imizekelo yeploti ipapashiwe que bangela ukuphuphuma kunye noncedo lokubuyisela ezi zakhelo kwi-802.11 isitaki esingenazingcingo, kunokwenzeka ukwenza ukusilela kwenkonzo.

Kukhankanyiwe ukuba semngciphekweni ezizimeleyo abaqhubi wireless ezisetyenziswa. Kucingelwa ukuba imiba echongiweyo ingasetyenziselwa ukudala ukuxhaphaza okusebenzayo kuhlaselo olukude kwiinkqubo.

Ngokumalunga nokulungiswa kwezi bugs, kukhankanyiwe ukuba uLinus Torvalds uchole ulungiso lokhuseleko lweWiFi olusetyenzwa ngohlaziyo oluninzi lwenethiwekhi yeLinux 6.1 yokudibanisa ifestile.

Iipetshi ezilungisayo sele zikhutshiwe kwaye ziphunyezwe kuthotho oluzinzileyo kwaye ngaphakathi kohlaziyo lweyona ndawo iphambili yeLinux esasazwayo kwaye, ngokulandelayo, kufuneka ithathwe kwimijikelo elandelayo yokukhutshwa kwamanqaku kwiintsuku ezizayo.

Gqibela ukuba unomdla wokwazi okungakumbi ngayo, ungazijonga iinkcukacha kwi eli khonkco lilandelayo.