Vulnerability dị na Dnsmasq kwere ka ị na-etinye ọdịnaya dị na nchekwa DNS

Na nso nso a, ozi banyere achoputara 7 nsogbu na Dnsmasq ngwugwu, nke na - agwakọta ihe nchekwa DNS echekwara na sava DHCP, nke enyere ha koodu aha DNSpooq. Nsogbu ahụs kwere rogue DNS cache mwakpo ma ọ bụ echekwa overflows nke ahụ nwere ike iduga na njedebe nke koodu onye na-awakpo ya.

N'agbanyeghị na nso nso a Dnsmasq ejighizi ndabara dika onye solver na nkesa Linux ndi ozo, a ka ji ya eme ihe na gam akporo na nkesa pụrụ iche dịka OpenWrt na DD-WRT, yana ngwa ngwa maka ndị na-anya ikuku site na ọtụtụ ndị nrụpụta. Na nkesa nkịtị, ojiji dnsmasq zuru oke ga-ekwe omume, dịka ọmụmaatụ mgbe ị na-eji libvirt, enwere ike ịmalite ya iji nye ọrụ DNS na igwe arụmọrụ ma ọ bụ enwere ike rụọ ọrụ site na ịgbanwe ntọala na nhazi NetworkManager.

Ebe ọ bụ na omenala rawụta nweta nkwalite omenala doo a otutu na-chọrọ, Ndị na-eme nchọpụta na-atụ egwu na nsogbu edobere nwere ike ghara idozi ruo ogologo oge ma tinye aka na mwakpo akpaghị aka na ndị na-eme njem iji nweta ikike ịchịkwa ha ma ọ bụ weghachite ndị ọrụ na saịtị ọjọọ.

E nwere ihe dịka ụlọ ọrụ 40 dabere na Dnsmasq, gụnyere Cisco, Comcast, Netgear, Ubiquiti, Siemens, Arista, Technicolor, Aruba, Wind River, Asus, AT & T, D-Link, Huawei, Juniper, Motorola, Synology, Xiaomi, ZTE, na Zyxel. Enwere ike ịdọ ndị ọrụ nke ụdị ngwaọrụ a aka na ntị ka ha ghara iji ọrụ redirection DNS na-enye mgbe niile na ha.

Akụkụ mbụ nke ọma chọpụtara na Dnsmasq na-ezo aka na nchebe megide mwakpo nsị nke DNS, dabere na usoro nke Dan Kaminsky nyere na 2008.

Okwu amuputara na-eme ka nchedo ndi di adighi ike ma nye ohere ịme ka adreesị IP nke ngalaba aka ike dị na oghere. Kamzọ Kaminsky na-eme ka nha nke nganga DNS jụrụ ID, nke bụ naanị 16 ibe n'ibe.

Iji chọta njirimara ziri ezi dị mkpa iji kwado aha nnabata ahụ, ziga ihe gbasara 7.000 arịrịọ ma mee ka azịza 140.000 dị. Mwakpo ahụ gbadara izipu ọnụ ọgụgụ buru ibu nke ngwugwu IP-agbụ na mkpebi DNS nwere njirimara njirimara azụmahịa DNS dị iche iche.

Ihe ngosipụta amatara na-ebelata 32-bit entropy larịị na-atụ anya na ọ ga-mkpa ịkọ 19 ibe n'ibe, nke na-eme ka a cache nsi ọgụ nnọọ ezi uche. Ọzọkwa, dnsmasq si njikwa nke CNAME ndia-enye ya ohere spoof yinye yinye nke CNAME ndia ka rụọ ọrụ nke ọma spoof ruo 9 DNS ndia na oge.

  • EGO-2020-25684: enweghi nkwado nke arịrịọ ID na Nchikota na adreesị IP na ọdụ ụgbọ mmiri mgbe ị na-emezi nzaghachi DNS sitere na sava ndị ọzọ. Omume a ekwekọghị na RFC-5452, nke chọrọ njirimara arịrịọ ndị ọzọ a ga-eji mee ihe mgbe ị zara nzaghachi.
  • EGO-2020-25686: Enweghi nkwado nke aririo echere na otu aha, na-ekwe ka iji ubochi omumu belata oke onu ogugu a choro iji ghagharia nzaghachi. N'ikwekọ na nsogbu nke CVE-2020-25684, njirimara a nwere ike belata oke mgbagwoju anya nke mwakpo a.
  • EGO-2020-25685: ojiji nke CRC32 a na-ejighi n'aka algorithm mgbe ị na-enyocha nzaghachi, ọ bụrụ na mkpokọta na-enweghị DNSSEC (SHA-1 ejiri ya na DNSSEC). Enwere ike iji nsogbu ahụ belata ọnụ ọgụgụ nke mbọ site na ikwe ka ị jiri ngalaba nwere otu CRC32 hash dị ka ngalaba a na-eche.
  • Nsogbu nke abụọ (CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, na CVE-2020-25687) bụ nke sitere na njehie nke na-eme ka nchekwa na-erubiga ókè mgbe ị na-edozi ụfọdụ data mpụga.
  • Maka nsogbu nke CVE-2020-25681 na CVE-2020-25682, ọ ga-ekwe omume ịmepụta ịkpa ike nwere ike ibute mmebi koodu na sistemụ ahụ.

N'ikpeazụ ọ kwuru na a na-edozi nsogbu ndị dị na Dnsmasq melite 2.83 na dị ka a workaround, ọ na-atụ aro iji gbanyụọ DNSSEC na query caching iji iwu akara nhọrọ.

Isi: https://kb.cert.org


Ọdịnaya nke isiokwu agbaso ụkpụrụ anyị nke ụkpụrụ nduzi. Kpesa mmejọ pịa ebe a.

Bụrụ onye mbụ ịza ajụjụ

Hapu okwu gi

Adreesị email gị agaghị bipụtara.

*

*

  1. Rụ ọrụ maka data: Miguel Ángel Gatón
  2. Nzube nke data: Nchịkwa SPAM, njikwa okwu.
  3. Ikike: Nkwenye gị
  4. Nkwurịta okwu nke data: Agaghị agwa ndị ọzọ data ahụ ma ọ bụghị site na iwu.
  5. Nchekwa data: Ebe nchekwa data nke Occentus Networks (EU) kwadoro
  6. Ikike: Oge obula inwere ike igbachi, weghachite ma hichapụ ihe omuma gi.

bool(ezi)