Linux/Unix 主机中安装的一个或多个程序包受到一个漏洞影响，而供应商没有提供补丁程序。

  - drm/gud修复了 UBSAN 警告 UBSAN 抱怨 bool 的值无效[ 101.165172] [drm] 已初始化 2-3 的 gud 1.0.0 20200422。2:1.0 (针对次要 1) [ 101.213360] gud 2-3.2:1.0: [drm] fb1: guddrmfb 帧缓冲区设备 [ 101.213426] usbcore已注册新接口驱动程序 gud [ 101.989431] ===================== ================================================== ========= [ 101.989441] UBSAN
    linux/include/linux/iosys-map.h:253:9 中的 invalid-load [ 101.989447] 值 121 的负载不是“_Bool”类型的有效值 [ 101.989451] CPU: 1 PID: 455 Comm: kworker /1:6 未受感染 5.18.0-rc5-gud-5.18-rc5 #3 [101.989456] 硬件名称Hewlett-Packard HP EliteBook 820 G1/1991BIOS L71 Ver. 01.44 04/12/2018 [101.989459] Workqueueevents_long gud_flush_work [gud] [ 101.989471] 调用跟踪[ 101.989474] <TASK> [ [101.989479] dump_stack_lvl+0x49/0x5f [ 101.989488] dump_stack+0x10/0x12 [ 101.989493] ubsan_epilogue+0x9/0x3b [ 101.989498] __ubsan_handle_load_invalid_value.cold+0x44/0x49 [ 101.989504] dma_buf_vmap.cold+0x38/0x3d [ 101.989511] ? find_busies_group+0x48/0x300 [ 101.989520] drm_gem_shmem_vmap+0x76/0x1b0 [drm_shmem_helper] [ 101.989528] drm_gem_shmem_object_vmap+0x9/0xb [drm_shmem_helper] [ [] ] drm_gem_vmap+0x26/0x1b0 [drm_shmem_helper] [ 101.989535] drm_gem_vmap+0x26/0x60 [drm] [ 101.989594] drm_gem_vmap+0x26/0x60 [drm] [[] ] [drm_kms_helper] [ 101.989630] gud_prep_flush+0xc1/0x710 [gud] [ 101.989639] ? _raw_spin_lock+0x17/0x40 [101.989648] gud_flush_work+0x1e0/0x430 [gud] [ 101.989653] ? __switch_to+0x11d/0x470 [ 101.989664] process_one_work+0x21f/0x3f0 [ 101.989673] worker_thread+0x200/0x3e0 [ 101.989679] ? rescuer_thread+0x390/0x390 [ 101.989684] kthread+0xfd/0x130 [ 101.989690] ? kthread_complete_and_exit+0x20/0x20 [ 101.989696] ret_from_fork+0x22/0x30 [ 101.989706] </TASK> [101.989708] ========================== ================================================== ==== 此警告的来源在从 dma_buf_vmap() 调用的 iosys_map_clear() 中。它会根据 map->is_iomem 有条件地设置值。未初始化在堆栈上分配 iosys_map 变量这将导致 ->is_iomem 具有所有类型的值而不仅仅是 0/1。通过将 iosys_map 变量清零来修复此问题。 (CVE-2022-50628)

请注意，Nessus 依赖供应商报告的程序包是否存在进行判断。

检测

Linux Distros 未修补的漏洞：CVE-2022-50628

high Nessus 插件 ID 277773

版本 1.3