UAndrey Konovalov utyhile ii-Bugs ezili-15 kwiLinux Kernel USB Drivers

Darkcrizt

Imizuzu ye4

I-Linux USB

Andrew Konovalov umphandi wezokhuseleko kuGoogle Kutshanje kupapashwe ingxelo echongiweyo yokuba sesichengeni kwe-15 (I-CVE-2019-19523 - I-CVE-2019-19537) kwii-USB ezibonelelwe kwi-kernel ye-Linux. Lo Yinxalenye yesithathu yeengxaki ezifunyenwe ngexesha lovavanyo yesitaki se-USB kwiphakheji ye-syzkaller ngaphambili, lo mphengululi wayesele exele ukuba sesichengeni kwe-29 kwaye esele sithethileyo apha kwibhlog.

Imiba echazwe ngaphambili ichazwe ngumphandi wezokhuseleko ukuba ezi mpazamo zinokuxhaphaza xa izixhobo ze-USB ezilungiselelwe ngokukodwa zixhunyiwe kwikhompyuter.

Uhlaselo lunokwenzeka ukuba kukho ukufikelela emzimbeni kwikhompyuter kwaye inokukhokelela kwingozi enye yekernel, kodwa ezinye izibonakaliso azifakwanga (umzekelo, ukuba semngciphekweni ofanayo okhethwe ngo-2016, umqhubi we-USB snd-usbmidi wakwazi ukulungiselela ukuxhaphaza ukwenza ikhowudi kwinqanaba le-kernel).

Kule ngxelo intsha NguAndrey Konovalov, Uluhlu lubandakanya kuphela ukuba semngciphekweni okubangelwa kukufikelela kwimemori esele ikhululwe (Sebenzisa-emva-simahla) okanye ukhokele kwimemori yedatha yokuvuza.

Imiba enokusetyenziselwa ukwala inkonzo abafakwanga kwingxelo. Ukuba semngciphekweni kunokuba nokuxhatshazwa xa izixhobo ze-USB ezilungiselelwe ngokukodwa zixhunyiwe kwikhompyuter. Ukulungiswa kwazo zonke iingxaki ezikhankanyiweyo kwingxelo sele zibandakanyiwe kwikernel, kodwa ezinye iibugs ezingafakwanga kwingxelo azikalungiswa okwangoku.

Ezinye ii-bugs kwi-Linux kernel USB driver ezinokubangelwa sisixhobo sangaphandle esibi se-USB safunyanwa nesykaller… Zonke ezi bugs zilungisiwe phezulu (kodwa ezinye ezininzi ii-syzbot USB bugs azikalungiswa).

Eyona mngcipheko uyingozi ukusebenzisa emva kokukhulula oko kunokukhokelela ekuphunyezweni kwekhowudi yokuhlaselwa sele ilungisiwe kubaqhubi adutux, ff-memless, ieee802154, pn533, hiddev, iowarrior, mcba_usb kunye ne-yurex.

Ngaphantsi kwe-CVE-2019-19532, i-14 eyongeziweyo yokuba semngciphekweni ishwankathelwe kwii-HID driver ngenxa yeempazamo ezingaphandle kwemida. Abalawuli ttusb_dec, pcan_usb_fd kunye ne-pcan_usb_pro Baqubisana neengxaki ezikhokelela ekuvuza kwedatha kwimemori ye-kernel. Ikhowudi yokubeka ye-USB yokusebenza kwezixhobo zomlinganiswa ichonge umba (i-CVE-2019-19537) ebangelwe yimeko yomdyarho.

I-CVE-2019-19523

Kwi-Linux kernel ngaphambi ko-5.3.7, Kukho impazamo yokusebenzisa enokubangelwa sisixhobo esibi se-USB en abaqhubi / usb / misc / adutux.c, ekwabizwa ngokuba yi-CID-44efc269db79.

I-CVE-2019-19524

Kwi-Linux kernel ngaphambi ko-5.3.12, kukho impazamo yokusetyenziswa enokubangelwa sisixhobo esibi se-USB kwi /input/ff-memless.c driver, ekwabizwa ngokuba yi-CID-fa3a5a1880c9.

I-CVE-2019-19532

Kwi-kernel yeLinux ngaphambi ko-5.3.9, kukho imida emininzi yokubhala iimpazamo ezinokubangelwa sisixhobo esibi se-USB kwi-Linux kernel HID driver, ekwabizwa ngokuba yi-CID-d9d4b1e46d95. Oku kuchaphazela:

abaqhubi / bazifihla / bafihla-axff.c, abaqhubi / bafihla / bafihla-dr.c, abaqhubi / bafihla / bafihla-emsff.c

abaqhubi / bazifihla / bafihla-gaff.c, abaqhubi / bafihla / bafihla-holtekff.c

abaqhubi / bafihla / bafihla-lg2ff.c, abaqhubi / bafihla / bafihla-lg3ff.c

abaqhubi / bafihla / bafihla-lg4ff.c, abaqhubi / bafihla / bafihla-lgff.c

abaqhubi / bafihlile / bafihla-logitech-hidpp.c, abaqhubi / bafihla / bafihla-microsoft.c

abaqhubi / bafihliwe / bafihla-sony.c, abaqhubi / bafihla / bafihla-tmff.c

abaqhubi / bafihle / bafihla-zpff.c.

Singajonga kwakhona ukuchongwa kwemingcipheko emine (CVE-2019-14895, CVE-2019-14896, CVE-2019-14897, CVE-2019-14901) kumlawuli weetshipsi ezingenazingcingo zeMarvell, ezinokubangela ukuba isikhukula siphuphume.

Uhlaselo lwenziwa kude ukuthumela izakhelo eziyilwe ngendlela ethile xa uqhagamshela kwindawo yokungena engenazingcingo yomhlaseli. Isoyikiso esinokubakho kukukhanyela inkonzo ekude (ukonakala kwe-kernel), kodwa ukubanakho kokusebenza kwekhowudi kule nkqubo akukhutshelwa ngaphandle.

Okwangoku iingxaki ezihlala zingalungiswanga esele zichaziwe kwiintsuku ezimbalwa ezidlulileyo kulwabiwo (iDebian, Ubuntu, Fedora, RHEL, SUSE) sele isebenza ukulungisa iimpazamo. Nangona isicatshulwa sele sicetyisiwe ukuba sifakwe kwiLinux Kernel kwiinguqulelo ezilandelayo.

Ukuba ufuna ukwazi ngakumbi malunga neempazamo ezifumanekayo, ungajonga kupapasho lwantlandlolo kwifayile ye- ikhonkco elandelayo nale enye ikhonkco.


Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Inoxanduva lwedatha: I-AB Internet Networks 2008 SL
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.

  1.   Aritz sitsho
    yenzayo 4 iminyaka

    Msgstr "" "Kwi Linux kernel phambi kuka 5.3.9, kukho iimpazamo zokubhala ezininzi ngaphandle kwemida". Nceda uyilungise, David.

    Phendula kuAritz