Ana samun ingantaccen sakewa na ɗakin karatu na sirri na OpenSSL 3.0.1 da 1.1.1m. Sigar 3.0.1 ta gyara raunin (CVE-2021-4044), kuma kusan kwaro goma sha biyu an gyara su a cikin sakin biyun.
Rashin lahani yana wanzuwa a aiwatar da abokan ciniki na SSL/TLS kuma yana da alaƙa da gaskiyar cewa ɗakin karatu na libssl ba daidai ba yana sarrafa lambobin kuskure mara kyau da aikin X509_verify_cert () ya dawo, wanda ake kira don tabbatar da takardar shaidar da uwar garken ya ba abokin ciniki. Ana dawo da lambobi mara kyau lokacin da kurakurai na ciki suka faru, misali, idan ba za a iya keɓance ƙwaƙwalwar ajiya don buffer ba. Idan an dawo da irin wannan kuskuren, kira na gaba zuwa ayyukan I/O kamar SSL_connect() da SSL_do_handshake() zasu dawo da gazawa da lambar kuskuren SSL_ERROR_WANT_RETRY_VERIFY, wanda yakamata a dawo dashi idan aikace-aikacen ya riga ya yi kira zuwa SSL_CTX_set_cert_verify_callback().
Tunda yawancin aikace-aikacen ba sa kiran SSL_CTX_set_cert_verify_callback(), faruwar kuskuren SSL_ERROR_WANT_RETRY_VERIFY yana iya haifar da karo, madauki, ko wani amsa mara kyau. Matsalar ita ce mafi haɗari a haɗe tare da wani kwaro a cikin OpenSSL 3.0, wanda ke haifar da kuskuren ciki lokacin sarrafa takaddun shaida a cikin X509_verify_cert() ba tare da tsawo na "Subject Madadin Suna", amma tare da ɗaure suna a cikin ƙuntatawa na amfani. A wannan yanayin, harin na iya haifar da ƙayyadaddun ƙayyadaddun ƙayyadaddun ƙayyadaddun ƙayyadaddun aikace-aikace a cikin sarrafa takaddun shaida da kafa zaman TLS.
source: budenet.ru