Kusagadzikana (CVE-2-2) kwakaonekwa muraibhurari ye libsh (kwete kuti ivhiringidzwe ne libssh2021), yakagadzirirwa kuwedzera mutengi uye sevha tsigiro yeSSHv3634 protocol kumapurogiramu eC, zvichitungamira mukufashukira kwebuffer paunotanga maitiro ekudzoreredza. uchishandisa kiyi yekutsinhana iyo inoshandisa akasiyana hashing algorithm. Nyaya inogadziriswa mukusunungurwa 0.9.6.
Izvo zvakakosha zvedambudziko ndezvekuti kiyi shanduko yekushanda inobvumira kushandiswa kwekriptographic hashes ine saizi yekukanda iyo inosiyana kubva pakutanga yakashandiswa algorithm. Panguva imwe cheteyo, ndangariro yehashi mu libssh yakagoverwa zvichibva pahukuru hwehashi yepakutanga, uye kushandisa saizi hombe yehashi inotungamira kudhata kunyorwa pamusoro pemuganhu wakagoverwa. Senzira yekudzosera kumashure kuchengetedza, unogona kudzikamisa rondedzero yeakatsinhanisa makiyi nzira kune algorithms ane saizi yakafanana hashi. Semuenzaniso, kuti usunge kuSHA256, unogona kuwedzera kune kodhi: rc = ssh_options_set(s->ssh.session, SSH_OPTIONS_KEY_EXCHANGE, "diffie-hellman-group14-sha256,curve25519-sha256,ecdh-sha2-nistp256");
Source: opennet.ru