Critical Openssh Vulnerability - UPDATE YOUR SYSTEM NOW!

For questions regarding system and application security
Forum rules
Post Reply
Message
Author
proteusguy
Posts: 18
Joined: Sun Apr 26, 2020 4:29 am

Critical Openssh Vulnerability - UPDATE YOUR SYSTEM NOW!

#1 Post by proteusguy »

@all - there's a serious openssh vulnerability that a LOT of repos are going to be susceptible to https://ubuntu.com/security/CVE-2024-6387

You're going to want to do this set of commands to get the latest one:

sudo apt-get update && sudo apt-get install --only-upgrade openssh-server

That should get you this version of openssh-server: 1:9.2p1-2+deb12u3

If you get a different version such as 1:9.2p1-2+deb12u2 (which is what I got) then you're still vulnerable. I had to edit /etc/apt/sources.list.d/debian.list and uncomment the security sources:

deb http://security.debian.org/debian-security bookworm-security main contrib non-free

Then run the above commands again and you should end up with the correct version. Make sure your sshd service has restarted and then you're good to go.
Top
User avatar
JmaCWQ
Posts: 264
Joined: Fri Sep 09, 2016 4:42 am

Re: Critical Openssh Vulnerability - UPDATE YOUR SYSTEM NOW!

#2 Post by JmaCWQ »

I think I'll wait until it comes through MX updates.
Top
User avatar
siamhie
Global Moderator
Posts: 3219
Joined: Fri Aug 20, 2021 5:45 pm

Re: Critical Openssh Vulnerability - UPDATE YOUR SYSTEM NOW!

#3 Post by siamhie »

Debian pushed out the fix on July 1st.

Code: Select all

  32    upgrade l…    2024-06-30 15:36:47 PDT          4    siamhie (1000)  
  33    upgrade o…    2024-07-01 06:47:49 PDT          2    siamhie (1000)  
╔═[siamhie@flux23]═[22:14/02-07-24]═════════════════════════════════════════[~]
╚═> nala history info 33
===============================================================================
 Upgraded                                                                      
===============================================================================
  Package:                  Old Version:     New Version:               Size:  
  openssh-client            1:9.2p1-2+deb12  1:9.2p1-2+deb12           991 KB  
                            u2               u3                                
  ssh-askpass-gnome         1:9.2p1-2+deb12  1:9.2p1-2+deb12           188 KB  
                            u2               u3                                
                                                                               
===============================================================================
 Summary                                                                       
===============================================================================
 Upgraded 2 Packages
This is my Fluxbox . There are many others like it, but this one is mine. My Fluxbox is my best friend. It is my life.
I must master it as I must master my life. Without me, my Fluxbox is useless. Without my Fluxbox, I am useless.
Top
Post Reply

Return to “Security”