N'ọbá akwụkwọ LibKSBA, nke GnuPG mepụtara ma na-enye ọrụ maka ịrụ ọrụ na asambodo X.509, achọpụtala adịghị ike dị oke egwu (CVE-2022-3515), na-eduga na integer njupụta na ide data aka ike karịa ihe nchekwa ekenyela mgbe ị na-atụgharị. Ihe owuwu ASN.1 ejiri na S/MIME, X.509 na CMS. Nsogbu a na-akawanye njọ site n'eziokwu ahụ bụ na a na-eji ọba akwụkwọ Libksba na ngwugwu GnuPG na adịghị ike nwere ike ime ka onye na-awakpo mebie koodu nzuzo mgbe GnuPG (gpgsm) na-eme ezoro ezo ma ọ bụ bịanyere aka na data sitere na faịlụ ma ọ bụ ozi email site na iji S/MIME. N'okwu kachasị mfe, iji onye ahịa email na-akwado GnuPG na S/MIME wakpo onye a tara ahụhụ, o zuru ezu izipu leta ahaziri ahazi.
Enwere ike iji adịghị ike ahụ buso sava dirmngr ọgụ na-ebudata ma tụba ndepụta mwepu akwụkwọ (CRL) wee nyochaa asambodo ejiri na TLS. Enwere ike ibuso ọgụ na dirmngr site na sava weebụ nke onye na-awakpo na-achịkwa, site na nloghachi nke CRL ma ọ bụ asambodo emebere nke ọma. Achọpụtara na achọpụtabeghị ihe ndị a na-eme n'ihu ọha maka gpgsm na dirmngr, mana adịghị ike ahụ bụ nke a na-ahụkarị na ọ dịghị ihe na-egbochi ndị mwakpo tozuru etozu ịkwadebe nrigbu n'onwe ha.
Edobere adịghị ike ahụ na ntọhapụ Libksba 1.6.2 yana na ọnụọgụ abụọ GnuPG 2.3.8. Na nkesa Linux, a na-enyekarị ọba akwụkwọ Libksba dị ka ndabere dị iche, na Windows na-ewuli ya na ngwungwu nwụnye GnuPG. Mgbe mmelite ahụ gachara, cheta iji iwu “gpgconf –kill all” malitegharịa usoro ndabere. Iji lelee ọnụnọ nke nsogbu na mmepụta nke iwu "gpgconf -show-versions", ị nwere ike nyochaa ahịrị "KSBA ....", nke ga-egosi ụdị nke opekata mpe 1.6.2.
Nwepụtabeghị mmelite maka nkesa, mana ị nwere ike soro ha dị na ibe: Debian, Ubuntu, Gentoo, RHEL, SUSE, Arch, FreeBSD. Ọdịmma ahụ dịkwa na ngwugwu MSI na AppImage nwere GnuPG VS-Desktop yana na Gpg4win.
isi: opennet.ru