Urhulumente wase-US ukhuphe isilumkiso sokuba abahlaseli baxhaphaze ngenkuthalo ukuba sesichengeni kwePipe emdaka kwiLinux. Ubuthathaka buvumela umsebenzisi wasekhaya ukuba afumane amalungelo akhethekileyo. Iiarhente zikarhulumente e-US ziyalelwe ukuba zilungise ubuthathaka kwiinkqubo zabo ngaphambi kwe-16 kaMeyi.
Ubuthathaka bubizwa ngokuba nguMbhobho omdaka ngenxa yonxibelelwano olungakhuselekanga phakathi kwefayile yeLinux, egcinwa ngokusisigxina kwi-hard drive, kunye nombhobho weLinux, eyi-buffer yedatha ekwimemori enokusetyenziswa njengefayile. Ukuba umsebenzisi unombhobho anokubhalela kuwo kwaye ifayile ayinako, ukubhalela kwisikhumbuzi sememori yombhobho kunokuguqula ngokungahambi kakuhle amaphepha afihliweyo kwiindawo ezahlukeneyo zefayile yediski.
Oku kubangela ukuba isithinteli se-cache yesiko ukuba sibhalwe emva kwidisk yikernel kunye nemixholo yefayile egciniweyo iguqulwe ngokusisigxina, nokuba zithini na iimvume zefayile. Umsebenzisi wendawo unokongeza iqhosha le-SSH kwi-akhawunti yeengcambu, ukudala i-root shell okanye ukongeza umsebenzi we-cron osebenza njenge-backdoor kwaye wongeza i-akhawunti entsha yomsebenzisi ngamalungelo engcambu, kodwa kunye nokuhlela iifayile ngaphandle kwebhokisi yesanti kunokwenzeka.
I-Cybersecurity kunye ne-Arhente yoKhuseleko lweZiseko (CISA) yeSebe lase-US loKhuseleko lweLizwe ligcina uluhlu lobuthathaka obuhlaselwe ngokusebenzayo kwaye emva koko ibeka imihla ebekiweyo xa ii-arhente zikarhulumente kufuneka zifakele uhlaziyo lomba ochaphazelekayo. Uluhlu, olunika ingqiqo kubuthathaka abanokuthi abahlaseli basebenzise, lwandiswa rhoqo kunye nobuthathaka obusanda kuhlaselwa.
Ngohlaziyo lwamva nje, ubuthathaka obusixhenxe obutsha bokuhlaselwa bongeziwe kuluhlu. Ukongeza kokuvuza kwePipe emdaka kwiLinux, ikwachaphazela ubuthathaka obune Windows ezivumela umhlaseli wasekhaya ukuba andise amalungelo akhe. IMicrosoft ikhuphe uhlaziyo lobunye bobu buthathaka (CVE-2022-26904) kwiiveki ezimbini ezidlulileyo. NgokukaMicrosoft, ukuba sesichengeni kwakungekahlaselwe ngexesha lokukhutshwa kwepatch. Oko sele kutshintshile, ngokwe-CISA, ebonisa kwakhona ukuba abahlaseli bakhawuleza kangakanani ukuthatha ithuba lobuthathaka obutyhiliweyo.