OpenSSH CVE-2024-6387 patches have been applied for #NixOS.
https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt
The -small channels will update within the hour. In the meantime configure a workaround, described here:
https://github.com/NixOS/nixpkgs/pull/323753#issuecomment-2199762128
services.openssh.settings.LoginGraceTime = 0;
hexa- /
npub1aw…yy3m5
2024-07-01 11:13:36
Author Public Key
npub1awdhze42w5n0mueh0w8ggrfjuajsuajdu9r5dpnurc0wmwmep2csxyy3m5Published at
2024-07-01 11:13:36Event JSON
{
"id": "cb7f63a0f6f2b67698fc67199a3a678955454b687592ab080ca77f06708de2c5",
"pubkey": "eb9b7166aa7526fdf3377b8e840d32e7650e764de14746867c1e1eedbb790ab1",
"created_at": 1719832416,
"kind": 1,
"tags": [
[
"t",
"nixos"
],
[
"proxy",
"https://chaos.social/users/hexa/statuses/112710937277491230",
"activitypub"
]
],
"content": "OpenSSH CVE-2024-6387 patches have been applied for #NixOS.\n\nhttps://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt\n\nThe -small channels will update within the hour. In the meantime configure a workaround, described here:\n\nhttps://github.com/NixOS/nixpkgs/pull/323753#issuecomment-2199762128\n\nservices.openssh.settings.LoginGraceTime = 0;",
"sig": "a838dc249979e22bbe0e3d9063e78e7c9efa4134ba197651f4e04ba53cf061de3822ede781c1b1e0f660d07d18a856fb59d4005505f85243566a0b92094fb3c3"
}