Re: [PLUG] recent vulnerability in OpenSSH

Alan D. Salewski via plug on 1 Jul 2024 14:17:35 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] recent vulnerability in OpenSSH

From: "Alan D. Salewski via plug" <plug@lists.phillylinux.org>
To: PLUG Mailing List <plug@lists.phillylinux.org>
Subject: Re: [PLUG] recent vulnerability in OpenSSH
Date: Mon, 1 Jul 2024 17:22:46 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed; d=pobox.com; h=date:from :to:subject:message-id:reply-to:references:mime-version :content-type:in-reply-to; s=sasl; bh=cM/MckH4BJt/xVi9iMMlZqECY4 EUdoMmKlCI2qGGJl4=; b=kMTeCl+Ft2AcDGt908bcUed+F5KaTCp0jBC60PouqG eVFJZXpW0g9SygNBFqu9ehwq9dX4VC9m4Eh0Ui7TDxf3DKRU7pP6MgU8O595J2mz UxEOBjlOreiXnt18/4GDA5+8RWLfc4dqIl3oFME0AKmkRA4mFSDax+Iij4nF4rc6 U=
Dkim-signature: v=1; a=rsa-sha256; c=relaxed; d=salewski.email; h=date:from:to:subject:message-id:reply-to:references:mime-version:content-type:in-reply-to; s=2020-09.pbsmtp; bh=cM/MckH4BJt/xVi9iMMlZqECY4EUdoMmKlCI2qGGJl4=; b=jMaU5glH8muPbuMlYhQPdLgvkA0/dmgB6HNX3N9XqQtKScWHUvcEOYlCl3EhQIhyCZifYZqMGFCw//YEahYBET+iAhhaIyDHLnJe3yHLzLWJo7qngfp1zYw4kUrTwrZkPlh+CDzxEakQNC1Q1hc7kD/mfgl7jXkh2V+3jqqK0zQ=
Mail-followup-to: PLUG Mailing List <plug@lists.phillylinux.org>
Reply-to: "Alan D. Salewski" <salewski@att.net>, "Alan D. Salewski" <ads@salewski.email>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mutt/2.0.5 (2021-01-21)

On 2024-07-01 16:31:59, Martin Cracauer via plug <plug@lists.phillylinux.org> spake thus:

Alan D. Salewski via plug wrote on Mon, Jul 01, 2024 at 04:25:46PM -0400:

[...]

Have been hunting ssh demons all day.  Is it normal for Debian's
unattended updates to not work as expected?

Martin


I don't use the unattended updates feature, but maybe check the
scheduling frequency of that process.

Also confirm that the 'bookworm-security' repository is
configured. Is you're running Debian 12.x ("bookworm"), the fix is
in version 1:9.2p1-2+deb12u3 of the openssh-server package[0].

    # apt-cache policy openssh-server
    openssh-server:
      Installed: 1:8.4p1-5+deb11u3
      Candidate: 1:8.4p1-5+deb11u3
      Version table:
         1:9.7p1-7 80
             80 https://deb.debian.org/debian sid/main amd64 Packages
         1:9.2p1-2+deb12u3 500
            500 https://security.debian.org/debian-security bookworm-security/main amd64 Packages
            500 https://deb.debian.org/debian bookworm-proposed-updates/main amd64 Packages
         1:9.2p1-2+deb12u2 500
            500 https://deb.debian.org/debian bookworm/main amd64 Packages
    ...


[0] https://security-tracker.debian.org/tracker/CVE-2024-6387

--
a l a n   d.   s a l e w s k i
ads@salewski.email
salewski@att.net
https://github.com/salewski
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] recent vulnerability in OpenSSH
  - From: Walt Mankowski via plug <plug@lists.phillylinux.org>

References:
- [PLUG] recent vulnerability in OpenSSH
  - From: Michael Lazin via plug <plug@lists.phillylinux.org>
- Re: [PLUG] recent vulnerability in OpenSSH
  - From: "Alan D. Salewski via plug" <plug@lists.phillylinux.org>
- Re: [PLUG] recent vulnerability in OpenSSH
  - From: "Alan D. Salewski via plug" <plug@lists.phillylinux.org>
- Re: [PLUG] recent vulnerability in OpenSSH
  - From: Martin Cracauer via plug <plug@lists.phillylinux.org>

Prev by Date: Re: [PLUG] recent vulnerability in OpenSSH
Next by Date: Re: [PLUG] recent vulnerability in OpenSSH
Previous by thread: Re: [PLUG] recent vulnerability in OpenSSH
Next by thread: Re: [PLUG] recent vulnerability in OpenSSH
Index(es):
- Date
- Thread