Critical Openssh Vulnerability - UPDATE YOUR SYSTEM NOW!
Posted: Wed Jul 03, 2024 12:16 am
@all - there's a serious openssh vulnerability that a LOT of repos are going to be susceptible to https://ubuntu.com/security/CVE-2024-6387
You're going to want to do this set of commands to get the latest one:
sudo apt-get update && sudo apt-get install --only-upgrade openssh-server
That should get you this version of openssh-server: 1:9.2p1-2+deb12u3
If you get a different version such as 1:9.2p1-2+deb12u2 (which is what I got) then you're still vulnerable. I had to edit /etc/apt/sources.list.d/debian.list and uncomment the security sources:
deb http://security.debian.org/debian-security bookworm-security main contrib non-free
Then run the above commands again and you should end up with the correct version. Make sure your sshd service has restarted and then you're good to go.
You're going to want to do this set of commands to get the latest one:
sudo apt-get update && sudo apt-get install --only-upgrade openssh-server
That should get you this version of openssh-server: 1:9.2p1-2+deb12u3
If you get a different version such as 1:9.2p1-2+deb12u2 (which is what I got) then you're still vulnerable. I had to edit /etc/apt/sources.list.d/debian.list and uncomment the security sources:
deb http://security.debian.org/debian-security bookworm-security main contrib non-free
Then run the above commands again and you should end up with the correct version. Make sure your sshd service has restarted and then you're good to go.