U-Andrey Konovalov uvule ezinye izimbungulu eziyi-15 kumaLinux kernel USB driver

Darkcrizt

Imizuzu ye-4

I-Linux USB

U-Andrey Konovalov umcwaningi wezokuphepha we-Google usanda kushicilela umbiko wokuhlonza ubungozi obungu-15 (I-CVE-2019-19523 - I-CVE-2019-19537) kumashayeli we-USB anikezwe ku-Linux kernel. Lona kuyingxenye yesithathu yezinkinga ezitholakale ngesikhathi sokuhlolwa okuyindida kwesitaki se-USB kwiphakethe le-syzkaller phambilini, lo mcwaningi wayesevele ebike ukuba sengozini okungama-29 futhi esesivele sikubekile lapha kubhulogi.

Izingqinamba ezidalulwe phambilini zichazwe ngumcwaningi wezokuphepha ukuthi la maphutha angaxhashazwa lapho amadivayisi e-USB alungiselelwe ngokukhethekile exhunywe kukhompyutha.

Ukuhlaselwa kungenzeka uma kukhona ukufinyelela ngokomzimba kwikhompyutha futhi kungaholela okungenani ekuphazamisweni kwekernel eyodwa, kepha okunye ukubonakaliswa akukhiywa ngaphandle (ngokwesibonelo, ngokulimazeka okufanayo okukhonjwe ngonyaka we-2016, umshayeli we-USB snd-usbmidi ukwazile ukulungiselela ukuxhaphaza ukwenza ikhodi ezingeni le-kernel).

Kulo mbiko omusha ngu-Andrey Konovalov, uhlu lufaka ubungozi kuphela obudalwa ukufinyelela izindawo zememori esezikhululiwe (ukusetshenziswa-ngemuva-kwamahhala) noma okuholela ekuvukeni kwedatha kusuka kwimemori ye-kernel.

Izinkinga ezingasetshenziselwa ukwenqaba insizakalo abafakiwe embikweni. Ukuba sengozini kungaxhashazwa lapho amadivayisi we-USB alungiselelwe ngokukhethekile exhunywe kukhompyutha. Ukulungiswa kwazo zonke izinkinga ezibalulwe embikweni sekuvele kufakiwe ku-kernel, kepha ezinye izimbungulu ezingafakiwe embikweni azikalungiswa okwamanje.

Izimbungulu eziningi kumashayeli we-Linux kernel USB angadalwa yidivayisi yangaphandle enonya ye-USB itholwe nge-syzkaller… Zonke lezi zinambuzane zilungisiwe ngomfula (kodwa ezinye izimbungulu eziningi ze-syzbot USB azikalungiswa).

Ukuba sengozini okuyingozi kakhulu ukusebenzisa ngemuva kokukhipha lokho kungaholela ekwakhiweni kwekhodi yokuhlasela kulungisiwe kubashayeli adutux, ff-memless, ieee802154, pn533, hiddev, iowarrior, mcba_usb ne-yurex.

Ngaphansi kwe-CVE-2019-19532, ukukhubazeka okungeziwe okungu-14 kufingqiwe kubashayeli be-HID ngenxa yamaphutha aphelelwe yisikhathi. Abalawuli i-ttusb_dec, i-pcan_usb_fd ne-pcan_usb_pro bahlangabezane nezinkinga eziholela ekuvuzweni kwedatha kusuka kwimemori ye-kernel. Ikhodi yesitaki se-USB yokusebenza ngamadivayisi wezinhlamvu ikhombe inkinga (i-CVE-2019-19537) ebangelwa isimo somjaho.

I-CVE-2019-19523

Ku-Linux kernel ngaphambi kuka-5.3.7, kunephutha lokusetshenziswa elingadalwa yidivayisi enonya ye-USB en abashayeli / usb / misc / adutux.c, eyaziwa nangokuthi i-CID-44efc269db79.

I-CVE-2019-19524

Ku-Linux kernel ngaphambi kuka-5.3.12, kunephutha lokusetshenziswa elingadalwa yidivayisi enonya ye-USB kumshayeli we- /input/ff-memless.c, owaziwa nangokuthi yi-CID-fa3a5a1880c9.

I-CVE-2019-19532

Ku-kernel ye-Linux ngaphambi kuka-5.3.9, kunamaphutha amaningi okubhala angaphandle kwemingcele angadalwa yidivayisi enonya ye-USB kumashayeli we-Linux kernel HID, eyaziwa nangokuthi yi-CID-d9d4b1e46d95. Lokhu kuthinta:

driver / hid / hid-axff.c, drivers / hid / hid-dr.c, abashayeli / bafihle / bafihle-emsff.c

abashayeli / bacashile / bafihla-gaff.c, abashayeli / bafihla / bafihla-holtekff.c

abashayeli / bacashe / bafihla-lg2ff.c, abashayeli / bafihla / bafihla-lg3ff.c

abashayeli / abafihliwe / abafihliwe-lg4ff.c, abashayeli / abafihliwe / abacashile-lgff.c

driver / hid / hid-logitech-hidpp.c, abashayeli / fihla / fihla-microsoft.c

abashayeli / fihla / bafihle-sony.c, abashayeli / bafihle / bafihle-tmff.c

abashayeli / bafihle / bafihle-zpff.c.

Futhi singabona ukuhlonza ubungozi obune (CVE-2019-14895, CVE-2019-14896, CVE-2019-14897, CVE-2019-14901) kusilawuli sezingcingo ezingenantambo zeMarvell, okungadala ukugcwala kwe-buffer.

Ukuhlaselwa kungenziwa ukude ukuthumela ozimele ngendlela ethile lapho uxhuma endaweni yokungena engenazintambo yomhlaseli. Usongo olukhulu kakhulu ukwenqatshelwa kwensizakalo okukude (ukuphahlazeka kernel), kepha kungenzeka ukuthi ikhodi yokuqalisa ohlelweni ayinqatshelwe.

Okwamanje izinkinga ezisale zingalungisiwe ezazivele zadalulwa ezinsukwini ezimbalwa ezedlule ekusatshalalisweni (i-Debian, Ubuntu, Fedora, RHEL, SUSE) sezivele zilungisa amaphutha. Yize isiqeshana sesivele siphakanyiselwe ukufakwa kwi-Linux Kernel kuzinguqulo ezilandelayo.

Uma ufuna ukwazi kabanzi ngamaphutha atholakele, ungahlola ukushicilelwa koqobo ku- isixhumanisi esilandelayo futhi lokhu esinye isixhumanisi.


Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Unomthwalo wemfanelo ngedatha: AB Internet Networks 2008 SL
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.

  1.   U-Aritz kusho
    kwenza iminyaka 4

    "Ku-Linux kernel ngaphambi kuka-5.3.9, kunamaphutha okubhala amaningi ngaphandle kwemingcele". Ngicela uyilungise, David.

    Phendula u-Aritz