Kuvandudza OpenSSL kushanduro 1.1.1b mune yakavhurikaSUSE Tumbleweed repository ΠΊ kuita kwemamwe maapplication ane hukama ne libopenssl uye kushandisa Russian kana Ukrainian nzvimbo. Dambudziko rakaonekwa mushure mekuwedzera kune OpenSSL kune yekukanganisa meseji buffer mubati (SYS_str_reasons). Iyo buffer yakatsanangurwa pa4 kilobytes, asi izvi zvaive zvisina kukwana kune dzimwe Unicode nzvimbo.
Kubuda kwe strerror_r, kunoshandiswa kuzadza buffer, i6856 bytes yenzvimbo yeRussia, uye 7000 yenzvimbo yeUkraine. Mu OpenSSL kodhi, pekutanga. chengorora kufashukira, asi ndipo panodimburwa muswe saizi yaive imwe byte yakakura kupfuura kukosha chaiko, izvo zvakaita kuti imwe-byte ifashuke uye kuparara pakurodha kukanganisa kodhi zvinyorwa zvaive zvakareba.
Parizvino yakatogadzirwa , asi haisati yagamuchirwa. Kuti udzoke kumashure kune yakapfuura yakagadzikana vhezheni (OpenSSL 1.1.0h) unogona kumhanyisa inotevera mirairo:
sudo zypper mu tumbleweed-cli
sudo tumbleweed init
sudo tumbleweed chinja 20190514
sudo zypper ref && sudo zypper dup && sudo zypper inr
Source: opennet.ru