I-strongSwan 5.9.10 isiyatholakala, iphakheji yamahhala yokudala ukuxhumana kwe-VPN ngokusekelwe kumthethonqubo we-IPSec osetshenziswa ku-Linux, Android, FreeBSD kanye ne-macOS. Inguqulo entsha isusa ubungozi obuyingozi (CVE-2023-26463) obungasetshenziswa ukweqa ukufakazela ubuqiniso, kodwa okungase futhi kuholele ekusetshenzisweni kwekhodi yomhlaseli kuseva noma ohlangothini lweklayenti. Inkinga yenzeka lapho kuqinisekiswa izitifiketi eziklanywe ngokukhethekile ku-TLS-based EAP (Extensible Authentication Protocol) izindlela zokuqinisekisa.
Ukuba sengozini kubangelwa isibambi se-TLS samukele ngokungalungile okhiye basesidlangalaleni abavela kusitifiketi sontanga, sibabheka njengabathembekile ngisho noma isitifiketi singakwazi ukuqinisekiswa ngempumelelo. Ngokucacile, lapho ushayela umsebenzi we-tls_find_public_key(), ukukhetha okusekelwe ohlotsheni lokhiye osesidlangalaleni kusetshenziswa ukuze kunqunywe ukuthi yiziphi izitifiketi ezithembekile. Inkinga ukuthi okuhlukile okusetshenziselwa ukunquma uhlobo lokhiye wokusebenza kokubheka kusethwa noma kunjalo, nanoma isitifiketi singathembekile.
Ngaphezu kwalokho, ngokukhohlisa ukhiye, unganciphisa isibali sereferensi (uma isitifiketi singathembekile, ireferensi yento iyakhululwa ngemva kokunquma uhlobo lokhiye) futhi ukhulule inkumbulo yento esasetshenziswa ngokhiye. Leli phutha alibandakanyi ukudalwa kwemisebenzi ukuze kuvuze ulwazi kumemori nokusebenzisa ikhodi yangokwezifiso.
Ukuhlaselwa kweseva kwenziwa ngokuthi iklayenti lithumele isitifiketi esizisayinele lona ukuze liqinisekise iklayenti lisebenzisa izindlela ze-EAP-TLS, EAP-TTLS, EAP-PEAP kanye ne-EAP-TNC. Ukuhlaselwa kweklayenti kungenziwa ngokusebenzisa iseva ngokubuyisela isitifiketi esiklanywe ngokukhethekile. Ukuba sengozini kuvela ekukhishweni kwe-strongSwan okungu-5.9.8 no-5.9.9. Ukushicilelwa kwezibuyekezo zephakheji ekusabalaliseni kungalandelelwa emakhasini: Debian, Ubuntu, Gentoo, RHEL, SUSE, Arch, FreeBSD, NetBSD.
Source: opennet.ru