Short summary of the #regreSSHion vulnerability (CVE-2024-6387)
It's an unauthenticated remote code execution that works without user interaction. Therefore a rather high security risk for systems running #openssh.
Affected versions (AFAIK):
Any version older than 4.4p1 and 8.5p1 until 9.8. The first upstream version, containing a fix is 9.8p1. But since distributions often backport security fixes to older versions, a deeper look is necessary.
Short summary for bigger distributions:
Debian: Stable, testing and sid are affected. A patch for stable has been released. (https://security-tracker.debian.org/tracker/CVE-2024-6387)
Ubuntu: 22.04, 23.10 and 23.04 are affected. A patch for them has been released. (https://ubuntu.com/security/notices/USN-6859-1)
Red Hat: RHEL version 6-8 are not affected. RHEL9 is and by now, there isn't a patch available https://access.redhat.com/security/cve/CVE-2024-6387)
#linux #openssh #CVE-2024-6387 #RCE #security #distributions
Larvitz :fedora: :redhat: /
npub1fj…jaq90
2024-07-01 14:03:12
Author Public Key
npub1fj6u59lnses9xu6xa6ewugrfg2e639lg32r24383525xq3deyuaspjaq90Published at
2024-07-01 14:03:12Event JSON
{
"id": "36ce0c28866d713f82fb3194664525c35e2a1137eb198abbb0908ddcd294a0d2",
"pubkey": "4cb5ca17f38660537346eeb2ee206942b3a897e88a86aac4f1a2a86045b9273b",
"created_at": 1719842592,
"kind": 1,
"tags": [
[
"proxy",
"https://burningboard.net/@Larvitz/112711604151756428",
"web"
],
[
"t",
"rce"
],
[
"t",
"linux"
],
[
"t",
"distributions"
],
[
"t",
"regresshion"
],
[
"t",
"openssh"
],
[
"t",
"security"
],
[
"t",
"cve"
],
[
"proxy",
"https://burningboard.net/users/Larvitz/statuses/112711604151756428",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://burningboard.net/users/Larvitz/statuses/112711604151756428",
"pink.momostr"
],
[
"expiration",
"1722434609"
]
],
"content": "Short summary of the #regreSSHion vulnerability (CVE-2024-6387)\n\nIt's an unauthenticated remote code execution that works without user interaction. Therefore a rather high security risk for systems running #openssh. \n\nAffected versions (AFAIK): \n\nAny version older than 4.4p1 and 8.5p1 until 9.8. The first upstream version, containing a fix is 9.8p1. But since distributions often backport security fixes to older versions, a deeper look is necessary.\n\nShort summary for bigger distributions:\n\nDebian: Stable, testing and sid are affected. A patch for stable has been released. (https://security-tracker.debian.org/tracker/CVE-2024-6387)\n\nUbuntu: 22.04, 23.10 and 23.04 are affected. A patch for them has been released. (https://ubuntu.com/security/notices/USN-6859-1)\n\nRed Hat: RHEL version 6-8 are not affected. RHEL9 is and by now, there isn't a patch available https://access.redhat.com/security/cve/CVE-2024-6387)\n\n#linux #openssh #CVE-2024-6387 #RCE #security #distributions",
"sig": "5238d8e60aae3e52405a2c1e346c5baa8b5f588320fa37d88da9b4ccc3fb7b5edaf027c5822efa5274baabcccaaf15ef85b78d1ed99bcf77d8cf2f9d3de87105"
}