Sakin gyaran gyare-gyare na ɗakin karatu na sirri na OpenSSL 1.1.1l yana samuwa tare da kawar da lahani biyu:
- CVE-2021-3711 wani buffer ne ambaliya a cikin lambar aiwatar da SM2 cryptographic algorithm (na kowa a kasar Sin), wanda ke ba da damar har zuwa 62 bytes don sake rubutawa a wani yanki da ya wuce iyakar buffer saboda kuskuren ƙididdige girman buffer. Mai hari zai iya yuwuwar cimma nasarar aiwatar da lambar ko karon aikace-aikace ta hanyar keɓance bayanan ƙira na musamman zuwa aikace-aikacen da ke amfani da aikin EVP_PKEY_decrypt() don lalata bayanan SM2.
- CVE-2021-3712 wani buffer ne ambaliya a cikin lambar sarrafa kirtani na ASN.1, wanda zai iya haifar da karo na aikace-aikacen ko bayyana abubuwan da ke cikin ƙwaƙwalwar tsari (misali, don gano maɓallan da aka adana a ƙwaƙwalwar ajiya) idan maharin ya ko ta yaya zai iya samarwa. kirtani a cikin tsarin ASN1_STRING na ciki. ba a ƙare ta hanyar null hali ba, kuma sarrafa shi a cikin ayyukan OpenSSL waɗanda ke buga takaddun shaida, kamar X509_aux_print(), X509_get1_email(), X509_REQ_get1_email() da X509_get1_ocsp().
A lokaci guda kuma, an sake sakin sabbin nau'ikan laburaren LibreSSL 3.3.4 da 3.2.6, waɗanda ba a bayyana rashin ƙarfi a sarari ba, amma yin la'akari da jerin canje-canje, an kawar da raunin CVE-2021-3712.
source: budenet.ru