Kwanan nan Intel ya fitar da cikakkun bayanai game da sabon aji na leak ɗin bayanai ta hanyar tsarin microarchitectural na masu sarrafawa, waɗanda ke ba da izini, ta hanyar sarrafa hanyar MMIO (Memory Mapped Input Output), don tantance bayanan da aka sarrafa a cikin sauran nau'ikan CPU.
Alal misali, raunin da ya faru yana ba da damar cire bayanai daga wasu matakai, Intel SGX enclaves, ko injunan kama-da-wane. Rashin lahani ya keɓanta ga Intel CPUs kawai; na'urorin sarrafawa na ɓangare na uku ba su da lahani.
An gano hanyoyin guda uku. don fitar da sauran bayanan ta hanyar MMIO:
- DRPW (Rubuta Rijista na Na'ura, CVE-2022-21166) - Batun tare da kuskuren sarrafa rubutu zuwa wasu rajistar MMIO. Idan girman bayanan da aka rubuta bai kai girman log ɗin ba, sauran bayanan da ke cikin ma'ajin cika su ma ana kwafi su zuwa log ɗin. Sakamakon haka, tsarin da ya fara aikin rubutawa mara cikawa ga rijistar MMIO na iya karɓar bayanan da aka bari a cikin ma'ajin ƙirƙira bayan ayyukan da aka yi akan wasu nau'ikan CPU.
- SBDS (Samfurin Samfurin Bayanai na Buffers, CVE-2022-21125) - Kernel-daure cika ragowar bayanan bayanan buffer, wanda aka jefar da shi sakamakon motsawa daga madaidaitan buffer na gama gari zuwa duk murhu.
- Farashin SBDR (Karanta Bayanai daga Rarraba Buffers, CVE-2022-21123): Batun yayi kama da SBDS, amma ya bambanta da cewa ragowar bayanan na iya shigar da tsarin CPU ga aikace-aikace. Abubuwan SBDS da SBDR suna faruwa ne kawai akan masu sarrafa abokin ciniki da dangin sabar Intel Xeon E3.
An kai hari yana buƙatar samun dama ga MMIO, wanda, alal misali, ana iya samuwa a cikin tsarin ƙira wanda ke ba da damar samun damar shiga MMIO don tsarin baƙi masu sarrafa maharan. Hakanan za'a iya buƙatar gyara don tsarin amfani da Intel SGX na tsaye (Extensions Guard Software).
Toshe raunin yana buƙatar duka sabuntawar firmware da amfani da hanyoyin ƙarin kariyar software dangane da amfani da umarnin VERW don share abubuwan da ke cikin buffers microarchitecture a lokacin dawowa daga kernel zuwa sararin mai amfani ko lokacin da aka canja wurin sarrafawa zuwa tsarin baƙo.
Hakanan se yana amfani da irin wannan kariyar don toshe hare-hare A baya an gano azuzuwan MDS ( Samfuran Bayanan Ƙirar Ƙira), SRBDS ( Samfuran Bayanan Buffer Data na Musamman), da TAA (Transactional Asynchronous Abort).
Waɗannan raunin ba harin kisa na wucin gadi bane. Koyaya, waɗannan raunin na iya yada bayanan da ba su da tushe zuwa kernel cika buffers inda daga baya za a iya gano bayanan ta hanyar wani harin wuce gona da iri.
Rage wa waɗannan raunin sun haɗa da haɗin sabunta microcode da canje-canjen software, dangane da dandamali da samfurin amfani. Wasu daga cikin waɗannan rangwamen sun yi kama da waɗanda aka yi amfani da su don rage samfurin bayanan ƙirƙira (MDS) ko waɗanda aka yi amfani da su don rage samfuran bayanan buffer na musamman (SRBDS).
An sanya waɗannan lalura masu zuwa Abubuwan Rauni na gama gari da Bayyanawa (CVE) da sigar 3.1
A gefen microcode, ana gabatar da canje-canjen da ake buƙata don aiwatar da tsaro a cikin sabuntawar microcode na Mayu don Intel CPUs (IPU 2022.1).
A cikin kernel na Linux, an haɗa kariya a kan sabon nau'in hare-hare a cikin nau'ikan nau'ikan daban-daban waɗanda ake tallafawa.
An ƙara fayil ɗin "/ sys / na'urori / tsarin / cpu / vulnerabilities / mmio_stale_data" zuwa kernel na Linux don duba yiwuwar tsarin zuwa rauni a cikin MMIO kuma don kimanta ayyukan wasu hanyoyin kariya.
Jigon na ajin raunin da aka gano shine cewa wasu ayyuka suna haifar da kwafi ko motsa bayanan da aka bari bayan an aiwatar da su akan wasu nau'ikan CPU daga wannan microarchitecture buffer zuwa wani. Rashin lahani a cikin MMIO yana ba da damar canja wurin wannan ragowar bayanan daga keɓantattun masu buffer microarchitectural zuwa rijistar aikace-aikacen da ake iya gani ko buffers na CPU.
A ƙarshe, idan kuna da sha'awar samun ƙarin sani game da shi, zaku iya tuntuɓar cikakkun bayanai a ciki mahada mai zuwa.