OpenBSD project published Corrective release of the released version of the package libressl 3.4.2 , in which the OpenSSL fork is developing, aimed at ensuring a higher level of security. In the new version of Eliminated Vulnerability in the verification code of X.509 certificates, leading To ignore the error when processing a non-verified certificate chain. The problem may cause authentication bypass when checking specially decorated certificates with an incorrect trust chain.
/Media reports.