The OpenBSD project has published a maintenance release of the portable edition of the LibreSSL 3.4.2 package, which develops a fork of OpenSSL aimed at providing a higher level of security. The new version fixes a vulnerability in the X.509 certificate verification code that causes errors to be ignored when processing an unverified certificate chain. An issue may result in authentication bypass when validating specially designed certificates with an incorrect trust chain.
Source: opennet.ru