ukhupho olulungisayo lwepakethe yokwenza iinethiwekhi zabucala ezinenyani . Kwinguqulelo entsha ubuthathaka (CVE-2020-11810) evumela ukuba iseshoni yomthengi idluliselwe kwidilesi entsha ye-IP eyayingagunyaziswanga ngaphambili. Ingxaki ingasetyenziswa umxhasi osanda kudibanisa kwinqanaba xa i-peer-id sele yenziwe, kodwa uthethathethwano lwezitshixo zeseshoni alugqitywanga (umthengi omnye unokumisa iiseshoni zabanye abathengi).
Olunye utshintsho lubandakanya:
- Kwiqonga leWindows, kuvunyelwe ukusebenzisa imitya yokukhangela i-unicode kwinketho ethi "-cryptoapicert";
- Iqinisekisa ukuba izatifikethi eziphelelwe lixesha zigqithiselwa kwivenkile yesatifikethi yeWindows;
- Ingxaki ngokungakwazi ukulayisha ii-CRL ezininzi (uLuhlu lokurhoxiswa kwesatifikethi) ezibekwe kwifayile enye xa usebenzisa i-β--crl-verifyβ ukhetho kwiinkqubo ezine-OpenSSL iye yasonjululwa;
- Xa usebenzisa ukhetho "-auth-user-pass file", ukuba kukho igama lomsebenzisi kuphela kwifayile, ukucela igama eligqithisiweyo, i-interface yokulawula iziqinisekiso iyafuneka ngoku (icela igama eliyimfihlo usebenzisa i-OpenVPN nge-prompt kwi-console. ayisenakwenzeka);
- Umyalelo wokutshekisha iinkonzo ezisebenzisanayo zomsebenzisi zitshintshiwe (kwiWindows, indawo yokumisela ihlolwe kuqala, kwaye isicelo sithunyelwa kumlawuli wesizinda);
- Iingxaki ezilungisiweyo ngokwakha kwiqonga leFreeBSD xa usebenzisa iflegi "-enable-async-push".
umthombo: opennet.ru