kho qhov tso tawm ntawm lub tsev qiv ntawv cryptographic , nyob rau hauv uas nws yog tshem tawm (), ua rau muaj kev tsis lees paub txog kev pabcuam thaum sim sib tham txog TLS 1.3 kev sib txuas nrog tus neeg saib xyuas-tswj tswj lossis tus neeg siv khoom. Qhov tsis muaj zog yog ntsuas raws li qhov hnyav heev.
Qhov teeb meem tsuas yog tshwm sim hauv cov ntawv thov uas siv SSL_check_chain() muaj nuj nqi thiab ua rau cov txheej txheem poob yog tias TLS txuas ntxiv "signature_algorithms_cert" siv tsis raug. Tshwj xeeb, yog tias cov txheej txheem kev sib txuas lus tau txais qhov tsis txaus siab lossis tsis raug rau tus lej kos npe digital ua cov txheej txheem, NULL pointer dereference tshwm sim thiab cov txheej txheem sib tsoo. Qhov teeb meem tshwm sim txij li thaum tso tawm ntawm OpenSSL 1.1.1d.
Tau qhov twg los: opennet.ru