Qhov tsis zoo (CVE-2-2) tau raug txheeb xyuas nyob rau hauv libssh lub tsev qiv ntawv (tsis yog yuav tsum tsis meej pem nrog libssh2021), tsim los ntxiv cov neeg siv khoom thiab cov neeg siv khoom txhawb nqa rau SSHv3634 raws tu qauv rau C cov kev pab cuam, ua rau muaj qhov tsis txaus thaum pib cov txheej txheem rekey. siv tus yuam sij pauv uas siv qhov sib txawv hashing algorithm. Qhov teeb meem raug kho hauv kev tso tawm 0.9.6.
Lub ntsiab lus ntawm qhov teeb meem yog tias qhov kev hloov pauv tseem ceeb tso cai rau kev siv cryptographic hashes nrog lub cam khwb cia loj uas txawv ntawm qhov kev siv algorithm qub. Nyob rau tib lub sijhawm, lub cim xeeb rau cov hash hauv libssh tau faib raws li qhov loj me me, thiab siv qhov loj dua hash ua rau cov ntaub ntawv raug sau dhau ntawm qhov txwv tsis pub ciam teb. Raws li tus txheej txheem kev nyab xeeb poob rov qab, koj tuaj yeem txwv cov npe ntawm kev txhawb nqa kev pauv hloov pauv tsuas yog algorithms nrog tib qhov loj me. Piv txwv li, txhawm rau khi rau SHA256, koj tuaj yeem ntxiv rau tus lej: rc = ssh_options_set(s->ssh.session, SSH_OPTIONS_KEY_EXCHANGE, "diffie-hellman-group14-sha256,curve25519-sha256,ecdh-sha2");
Tau qhov twg los: opennet.ru