Kwi-strongSwan, i-suite ye-VPN esekwe kwi-IPSec isetyenziswa kwi Linux, Android, iFreeBSD kunye macOSKuchongiwe ukuba kukho ubuthathaka (CVE-2023-41913) obunokusetyenziswa ekusetyenzisweni kwekhowudi ekude. Ubuthathaka bubangelwa yimpazamo kwinkqubo ye-charon-tkm ngokusetyenziswa kweprotocol ye-Internet Key Exchange (IKE) esekelwe kwi-TKMv2 (Trusted Key Manager). Le mpazamo ikhokelela ekuphuphumeni kwe-buffer xa kusetyenzwa amaxabiso akhiwe ngokukodwa kwiskimu se-DH (Diffie-Hellman). Ubuthathaka buchaphazela kuphela iinkqubo ezisebenzisa i-charon-tkm nakwi-strongSwan releases eziqala nge-5.3.0. Ingxaki ilungisiwe kuhlaziyo lwe-strongSwan 5.9.12. Kukwalungiselelwe iipatches ukulungisa ubuthathaka bamasebe eziqala nge-5.3.x.
Impazamo ibangelwa kukungajongi ubungakanani bamaxabiso eDiffie-Hellman kawonke-wonke phambi kokuba uwakhuphele kwisithinteli sobungakanani obusisigxina kwisitaki. Ukuphuphuma kungasungulwa ngokuthumela umyalezo owenziwe ngokukodwa IKE_SA_INIT owenziwe ngaphandle koqinisekiso. Kwiinguqulelo ezindala zeSwan eqinile, ukujonga ubungakanani kwenziwa kwi-KE yomthwalo wokuhlawula (Key Exchange), kodwa kwinguqulelo ye-5.3.0 utshintsho longeziweyo oluye lwahambisa itshekhi yamaxabiso oluntu kwicala lomphathi weprotocol yeDH ( Diffie-Hellman) kwaye wongeze imisebenzi yegeneric ukwenza lula ukujonga ukuchaneka kwamaqela aziwayo D.H. Ngenxa yokongamela, balibale ukongeza imisebenzi yokukhangela emitsha kwinkqubo ye-charon-tkm, esebenza njenge-proxy phakathi kwenkqubo ye-IKE kunye ne-TKM (uMphathi oNgqongileyo oThenjiweyo), njengesiphumo sokuba i-memcpy () umsebenzi uqulathe amaxabiso angakhangelwanga. evumele ukuya kuthi ga kwi-512 bytes ukuba ibhalwe kwi-10000-byte data buffer.
umthombo: opennet.ru
