{"id":12780,"date":"2016-05-13T15:47:07","date_gmt":"2016-05-13T07:47:07","guid":{"rendered":"https:\/\/www.deepin.org\/?p=12780"},"modified":"2017-08-31T10:43:11","modified_gmt":"2017-08-31T02:43:11","slug":"security-updates%ef%bc%88dsa-3566-1-dsa-3567-1%ef%bc%89","status":"publish","type":"post","link":"https:\/\/www.deepin.org.cn\/zh\/security-updates%ef%bc%88dsa-3566-1-dsa-3567-1%ef%bc%89\/","title":{"rendered":"\u5b89\u5168\u66f4\u65b0\uff08DSA-3566-1 &#038;DSA-3567-1\uff09"},"content":{"rendered":"\u6b64\u6b21\u5b89\u5168\u6f0f\u6d1e\u66f4\u65b0\u5305\u62ecopenssl\u548clibpam-sshauth\u66f4\u65b0\u3002<\/p>\n<p>&nbsp;<\/p>\n<h2>\u6f0f\u6d1e\u6982\u8ff0<\/h2>\n<p><strong>DSA-3566-1 openssl\u2014\u2014\u5b89\u5168\u66f4\u65b0<\/strong><\/p>\n<p>\u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2105\" target=\"_blank\">CVE-2016-2105<\/a>\uff1a\u5728 EVP_EncodeUpdate\u51fd\u6570\u4e2d\u53d1\u751f\u4e00\u4e2a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u7528\u4e8eBase64\u7f16\u7801\u3002\u5982\u679c\u653b\u51fb\u8005\u63d0\u4f9b\u5927\u91cf\u7684\u6570\u636e\uff0c\u5219\u53ef\u80fd\u4f1a\u5bfc\u81f4\u5806\u635f\u574f\u3002<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2106\" target=\"_blank\">CVE-2016-2106<\/a>\uff1a\u5728 EVP_EncodeUpdate\u51fd\u6570\u4e2d\u53d1\u751f\u4e00\u4e2a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u7528\u4e8eBase64\u7f16\u7801\u3002\u5982\u679c\u653b\u51fb\u8005\u63d0\u4f9b\u5927\u91cf\u7684\u6570\u636e\uff0c\u5219\u53ef\u80fd\u4f1a\u5bfc\u81f4\u5806\u635f\u574f\u3002<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2107\" target=\"_blank\">CVE-2016-2107<\/a>\uff1aAES\u7b97\u6cd5\u7684CBC\u6a21\u5f0f\u52a0\u5bc6\u4e2d\u7684\u4e00\u4e2a\u586b\u5145\u9884\u8a00\u5b9e\u73b0\u3002\u8fd9\u5141\u8bb8\u653b\u51fb\u8005\u89e3\u5bc6\u57fa\u4e8eAES CBC\u5bc6\u7801\u5957\u4ef6\u7684\u4e00\u4e2a\u52a0\u5bc6\u7684TLS\u6d41\u91cf\u3002<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2108\" target=\"_blank\">CVE-2016-2108<\/a>\uff1a\u5728ASN.1\u7f16\u7801\u5668\u4e2d\uff0c\u4e24\u4e0a\u72ec\u7acb\u7684\u6f0f\u6d1e\uff0c\u6d89\u53ca\u5230\u8d1f\u96f6\u6574\u6570\u503c\u548c\u5927\u578b\u901a\u7528\u6807\u7b7e\u5904\u7406\uff0c\u53ef\u80fd\u4f1a\u5bfc\u81f4\u8d8a\u754c\u5199\u7684\u64cd\u4f5c\u3002<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-2109\" target=\"_blank\">CVE-2016-2109<\/a>\uff1a\u5728ASN.1\u4e2d\u4eceBIO\u51fd\u6570\u4e2d\uff08\u4f8b\u5982\uff09\u8bfb\u53d6\u6570\u636e\u65f6\uff0c\u4e00\u4e2a\u77ed\u65e0\u6548\u7f16\u7801\u53ef\u80fd\u4f1a\u5bfc\u81f4\u5927\u91cf\u5185\u5b58\u7684\u8fc7\u591a\u6d88\u8017\u6216\u8017\u5c3d\u5185\u5b58\u3002<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><strong>DSA-3567-1 libpam-sshauth<\/strong><strong>\u2014\u2014<\/strong><strong>\u5b89\u5168\u66f4\u65b0<\/strong><\/p>\n<p>\u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-4422\" target=\"_blank\">CVE-2016-4422<\/a>\uff1a\u5728libpam-sshauth\u4e2d\uff0c\u4e00\u4e2a\u4f7f\u7528ssh\u670d\u52a1\u7684\u9a8c\u8bc1\u7684PAM\u6a21\u5757\uff0c\u4e0d\u80fd\u6b63\u786e\u5904\u7406\u7cfb\u7edf\u7684\u7528\u6237\u3002\u5728\u67d0\u4e9b\u914d\u7f6e\u4e2d\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u81ea\u7528\u6b64\u6f0f\u6d1e\u7684\u4f18\u52bf\u6765\u83b7\u5f97root\u6743\u9650\u3002<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<h2>\u4fee\u590d\u60c5\u51b5<\/h2>\n<p>openssl\u7684\u5b89\u5168\u6f0f\u6d1e\u57281.0.2h-1\u7248\u672c\u4e2d\u8fdb\u884c\u4e86\u4fee\u590d\uff1blibpam-sshauth\u7684\u5b89\u5168\u6f0f\u6d1e\u57280.4.1-2\u7248\u672c\u4e2d\u8fdb\u884c\u4e86\u4fee\u590d\u3002<\/p>\n<p>\u8bf7\u5404\u4f4d\u5c3d\u5feb\u66f4\u65b0\u7cfb\u7edf\u4ee5\u83b7\u53d6\u6f0f\u6d1e\u4fee\u590d\u8865\u4e01\u3002","protected":false},"excerpt":{"rendered":"<p>\u6b64\u6b21\u5b89\u5168\u6f0f\u6d1e\u66f4\u65b0\u5305\u62ecopenssl\u548clibpam-sshauth\u66f4\u65b0\u3002 &nbsp; \u6f0f\u6d1e\u6982\u8ff0 DSA-3566-1 openssl\u2014\u2014\u5b89\u5168\u66f4\u65b0 \u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a CVE-2016-2105\uff1a\u5728 EVP_EncodeUpdate\u51fd\u6570\u4e2d\u53d1\u751f\u4e00\u4e2a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u7528\u4e8eBase64\u7f16\u7801\u3002\u5982\u679c\u653b\u51fb\u8005\u63d0\u4f9b\u5927\u91cf\u7684\u6570\u636e\uff0c\u5219\u53ef\u80fd\u4f1a\u5bfc\u81f4\u5806\u635f\u574f\u3002 CVE-2016-2106\uff1a\u5728 EVP_EncodeUpdate\u51fd\u6570\u4e2d\u53d1\u751f ...<a href=https:\/\/www.deepin.org.cn\/zh\/security-updates%ef%bc%88dsa-3566-1-dsa-3567-1%ef%bc%89\/>\u9605\u8bfb\u66f4\u591a<\/a><\/p>\n","protected":false},"author":1,"featured_media":12784,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[75],"tags":[],"_links":{"self":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12780"}],"collection":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/comments?post=12780"}],"version-history":[{"count":11,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12780\/revisions"}],"predecessor-version":[{"id":25290,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12780\/revisions\/25290"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/media?parent=12780"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/categories?post=12780"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/tags?post=12780"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}