strongSwan, IPSec-yakavakirwa VPN package inoshandiswa paLinux, Android, FreeBSD, uye macOS, ine njodzi (CVE-2023-41913) iyo inogona kushandisirwa kure kure kodhi kuuraya neanorwisa. Kusagadzikana uku kunokonzerwa nebug mu charon-tkm process ine TKMv2 (Trusted Key Manager) kuitisa Key Exchange (IKE) protocol, zvichiita kuti buffer ifashuke kana ichigadzirisa yakanyatso kurongeka DH (Diffie-Hellman) hurongwa. Kusagadzikana kunongoonekwa pamasisitimu anoshandisa charon-tkm uye yakasimbaSwan kuburitswa kutanga kubva pa5.3.0. Dambudziko rakagadziriswa mune yakasimbaSwan 5.9.12 update. Kugadzirisa kusagadzikana mumapazi kutanga kubva ku5.3.x, zvigamba zvakagadzirirwa zvakare.
Iko kukanganisa kunokonzerwa nekusatarisa saizi yeruzhinji Diffie-Hellman kukosha usati waikopa kune yakagadziriswa-saizi buffer pane stack. Kufashukira kunogona kutangwa nekutumira meseji yakanyatsogadzirwa IKE_SA_INIT inogadziriswa pasina humbowo. Mune shanduro dzekare dzeSwan yakasimba, kutarisa saizi kwaiitwa muKE payload handler (Key Exchange), asi mushanduro 5.3.0 yakawedzerwa iyo yakafambisa cheki yehutsika hweveruzhinji kudivi reDH protocol handler ( Diffie-Hellman) uye akawedzera mabasa egeneric kurerutsa kutarisa kurongeka kwemapoka anozivikanwa D.H. Nekuda kwekutarisa, vakakanganwa kuwedzera mabasa matsva ekutarisa kune charon-tkm process, inoshanda semumiriri pakati peiyo IKE maitiro neTKM (Trusted Key Manager), semhedzisiro iyo memcpy () basa raive risingatariswe hunhu. iyo yakabvumira anosvika zviuru gumi kuti anyorwe kune 512-byte buffer data.
Source: opennet.ru