UGreg Kroah-Hartman, onomthwalo wokugcina igatsha elizinzile le-Linux kernel wazise Sekuphele izinsuku eziningana ngiphuza isinqumo sokwenqaba noma yiziphi izinguquko ezisuka eNyuvesi yaseMinnesota ziye kernel yeLinux, bese ubuyisela wonke amachashazi amukelwe ngaphambilini bese uwahlola kabusha.
Isizathu sokuvinjelwa kwakuyimisebenzi yeqembu locwaningo efunda ukuthi kungenzeka yini ukuthi kukhuthazwe ubungozi obufihliwe kukhodi yamaphrojekthi womthombo ovulekile, ngoba leli qembu lithumele amabala afaka amaphutha ezinhlobo ezahlukahlukene.
Njengoba kunikezwe umongo wokusebenzisa isikhombisi, bekungenangqondo futhi inhloso yokuhanjiswa kwesiqeshana bekungukuphenya ukuthi ngabe ushintsho oluyiphutha luzodlulisa ukubuyekezwa konjiniyela be-kernel.
Ngaphezu kwalesi sichibi, Kube neminye imizamo yabathuthukisi e-University of Minnesota yokwenza izinguquko ezingabazekayo ku-kernel.
Umnikeli othumele iziqeshana uzamile ukuzithethelela ukuhlola i-static analyzer entsha futhi ushintsho lwalungiswa ngokuya ngemiphumela yokuhlola ekulo.
Kodwa UGreg udonsele ekutheni iqiniso lokuthi ukulungiswa okuphakanyisiwe akujwayelekile amaphutha atholwe ngabahlaziyi be-static, nezimagqabhagqabha ezithunyelwe azixazululi lutho. Njengoba iqembu labacwaningi okukhulunywa ngalo selivele lazama phambilini ukwethula izixazululo ngobungozi obufihliwe, kuyacaca ukuthi baqhubekile nokuhlola kwabo emphakathini wokuthuthukiswa kernel.
Kuyathakazelisa ukuthi esikhathini esedlule, umholi weqembu lokuzama ubelokhu ebambe iqhaza ekulungiseni ubungozi obusemthethweni, njengokuvuza kolwazi kwisitaki se-USB (CVE-2016-4482) nakumanethiwekhi (CVE-2016-4485).
Ocwaningweni lokusatshalaliswa kobungozi obufihliwe, iqembu leNyuvesi yaseMinnesota lisho isibonelo sobungozi be-CVE-2019-12819, obudalwe isichibi esamukelwa ku-kernel ngo-2014. ku-mdio_bus, kepha eminyakeni emihlanu kamuva kwembulwa ukuthi ukukhwabanisa okunjalo kuzoholela ekufinyeleleni kokusebenzisa-ngemuva-kwamahhala kumemori block.
Ngasikhathi sinye, ababhali besifundo bathi emsebenzini wabo bafingqa imininingwane kuma-patches ayi-138 afaka amaphutha, kepha awahlobene nabahlanganyeli besifundo.
Imizamo yokuhambisa ezakho izimbungulu zeziphazamiso inqunyelwe ekubhaleni ngeposi futhi ushintsho olunjalo aluzange lufike esigabeni se-Git ukuzibophezela kunoma yiliphi igatsha le-kernel (uma ngemuva kokuthumela i-imeyili isichibi umlondolozi athola ukuthi isichibi sijwayelekile, uzocelwa ukuthi ungalufaki ushintsho ngoba kunephutha, ngemuva kwalokho okulungile patch kwathunyelwa).
Futhi, ukwahlulela ngomsebenzi wombhali we-fix egxekiwe, ubelokhu ebamba izingxenyana ezahlukahlukene ze-kernel isikhathi eside. Isibonelo abashayeli be-radeon ne-nouveau basanda kwamukela ushintsho kumaphutha we-pm_runtime_put_autosuspend (dev-> dev), kungaholela ekusetshenzisweni kwe-buffer ngemuva kokukhipha inkumbulo ehambisanayo.
Kushiwo futhi lokho UGreg ubuyisele emuva ukwenza okuhambisana ne-190 futhi waqala ukubuyekeza okusha. Inkinga ukuthi abanikeli be- @ umn.edu abazami nje kuphela ukukhuthaza ama-patches angabazekayo, baphinde balungisa ukuba sengozini kwangempela, futhi ukubuyisela emuva izinguquko kungaholela ekubuyisweni kwezinkinga zokuphepha ezazilungisiwe ngaphambilini. Abanye abalondolozi bavele bahlole kabusha ushintsho olungakenziwa futhi abatholanga zinkinga, kepha futhi bekukhona nezikhala zeziphazamisi.
UMnyango Wezesayensi Yamakhompyutha e-University of Minnesota ukhiphe isitatimende ememezela ukumiswa kophenyo kule ndawo, ukuqala ukuqinisekiswa kwezindlela ezisetshenzisiwe nokwenza uphenyo lokuthi uphenyo luvunyelwe kanjani. Umbiko wemiphumela uzokwabiwa nomphakathi.
Ekugcineni uGreg ubalula ukuthi uzibonile izimpendulo ezivela emphakathini futhi ubhekele nenqubo yokuhlola izindlela zokukhohlisa inqubo yokubuyekeza. Ngokubona kukaGreg, ukwenza izivivinyo ezinjalo ukuletha izinguquko eziyingozi akwamukelekile futhi akulungile.
Umthombo: https://lkml.org