ukukhishwa okulungisayo kwephakheji yokudala amanethiwekhi ayimfihlo abonakalayo . Enguqulweni entsha ubungozi (CVE-2020-11810) obuvumela ukuthi iseshini yeklayenti idluliselwe ekhelini le-IP elisha elalingagunyaziwe ngaphambilini. Inkinga ingasetshenziselwa iklayenti elisha elixhunywe esigabeni lapho i-id yontanga isivele yenziwe, kodwa ukuxoxisana kokhiye beseshini akukaqedwa (iklayenti elilodwa lingamisa izikhathi zamanye amaklayenti).
Ezinye izinguquko zihlanganisa:
- Ku-platform ye-Windows, kuvunyelwe ukusebenzisa izintambo zokusesha ze-unicode kunketho ethi "-cryptoapicert";
- Iqinisekisa ukuthi izitifiketi eziphelelwe yisikhathi zidluliselwa esitolo sesitifiketi se-Windows;
- Inkinga yokungakwazi ukulayisha ama-CRL ambalwa (Uhlu Lokuhoxiswa Kwesitifiketi) atholakala kufayela elilodwa lapho usebenzisa inketho ethi β--crl-verifyβ kumasistimu ane-OpenSSL isixazululiwe;
- Uma usebenzisa inketho ethi β-auth-user-pass fileβ, uma kunegama lomsebenzisi kuphela efayeleni, ukucela iphasiwedi, isixhumi esibonakalayo sokuphatha izifakazelo manje siyadingeka (kucela iphasiwedi usebenzisa i-OpenVPN nge-prompt kukhonsoli. akusenani);
- I-oda lokuhlola izinsizakalo ezisebenzisanayo zomsebenzisi lishintshiwe (ku-Windows, indawo yokumisa ihlolwa kuqala, bese isicelo sithunyelwa kusilawuli sesizinda);
- Kulungiswe izinkinga ngokwakha kuplathifomu ye-FreeBSD uma usebenzisa ifulegi elithi "-enable-async-push".
Source: opennet.ru