tmpod@lemmy.pt to Technology · 7 months agoOpenSSH: race condition in sshd allows remote code executionstackdiary.comexternal-linkmessage-square9fedilinkarrow-up1107arrow-down12file-textcross-posted to: linux
arrow-up1105arrow-down1external-linkOpenSSH: race condition in sshd allows remote code executionstackdiary.comtmpod@lemmy.pt to Technology · 7 months agomessage-square9fedilinkfile-textcross-posted to: linux
A severe vulnerability in OpenSSH, dubbed “regreSSHion” (CVE-2024-6387), has been discovered by the Qualys Threat Research Unit, potentially exposing
minus-squareandrew@radiation.partylinkfedilinkarrow-up6·7 months agoBut, eventually exploitable is still a pretty major concern for anybody who has systems running longer than a few days at a time.
minus-squaretmpod@lemmy.ptOPlinkfedilinkarrow-up3·7 months agoTrue, an RCE is always a serious thing. Just saying it’s not exactly catastrophic like others have been more so.
minus-squarewhereisk@lemmy.worldlinkfedilinkarrow-up2·7 months agoI can’t imagine any system of influence running an exposed ssh without some further protection from connection abuse like fail2ban.
But, eventually exploitable is still a pretty major concern for anybody who has systems running longer than a few days at a time.
True, an RCE is always a serious thing. Just saying it’s not exactly catastrophic like others have been more so.
I can’t imagine any system of influence running an exposed ssh without some further protection from connection abuse like fail2ban.