Ko te whakaraeraetanga o te puhera i roto i te libssh

He whakaraeraetanga (CVE-2-2) kua tautuhia i roto i te whare pukapuka libssh (kaore e pohehe ki te libssh2021), i hangaia hei taapiri i te tautoko a te kiritaki me te tūmau mo te kawa SSHv3634 ki nga kaupapa C, ka puta te puhake parepare i te wa e timata ana te mahi rekey. te whakamahi i te whakawhitinga matua e whakamahi ana i te huringa hashing algorithm rereke. Kua whakaritea te take i roto i te tukunga 0.9.6.

Ko te ngako o te raruraru ko te mahi huringa matua ka taea te whakamahi i nga haupae cryptographic me te rahi o te maka e rereke ana i te algorithm i whakamahia tuatahi. I taua wa ano, i tohatohahia te mahara mo te hash i libssh i runga i te rahi o te hash taketake, me te whakamahi i te rahi hash nui atu ka tuhiruahia nga raraunga ki tua atu i te rohenga parepare kua tohatohahia. Hei tikanga haumaru whakamuri, ka taea e koe te whakawhāiti i te rarangi o nga tikanga whakawhiti matua e tautokohia ana ki nga hātepee anake he rite te rahi o te hash. Hei tauira, ki te here ki SHA256, ka taea e koe te taapiri ki te waehere: rc = ssh_options_set(s->ssh.session, SSH_OPTIONS_KEY_EXCHANGE, "diffie-hellman-group14-sha256, curve25519-sha256,ecdh-sha2-nistp256");

Source: opennet.ru