一元网络论坛

 找回密码
 立即注册
搜索
热搜: 活动 交友 discuz
查看: 347|回复: 0

SSH vulnerability found, manual update guide for OpenSSH

[复制链接]

3万

主题

3万

帖子

9万

积分

管理员

Rank: 9Rank: 9Rank: 9

积分
96167
发表于 2024-7-2 02:02:32 | 显示全部楼层 |阅读模式
OpenSSH Remote Code Execution Vulnerability (CVE-2024-6387) Security Risk
This vulnerability is due to a race condition in signal handling within the OpenSSH daemon (sshd), allowing unauthenticated attackers to execute arbitrary code on Linux systems as the root user. The technical details of the exploit are now public, and it poses a significant risk. It is recommended to promptly conduct self-assessments and implement mitigation measures.
Affected Versions: 8.5p1 - 9.7p1
In simple terms: Any external attacker can potentially compromise hosts running SSH versions 8.5p1 through 9.7p1.
View Latest Package Files:
https://cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/
Check Your Version:
```sh
ssh -V
```
Update and Install Required Packages:
```sh
sudo apt-get -y update
sudo apt-get install build-essential zlib1g-dev libssl-dev
```
Download Latest Package:
```sh
wget https://cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-9.8p1.tar.gz
```
Unpack:
```sh
tar -xzf openssh-9.8p1.tar.gz
cd openssh-9.8p1
```
Compile:
```sh
./configure
make
```
Install:
```sh
sudo make install
```
Restart Service:
```sh
sudo systemctl restart ssh
```
Verify Installation:
```sh
ssh -V
```
If not showing openssh-9.8p1, add environment variable:
```sh
echo 'export PATH=/usr/local/bin:/usr/local/sbinPATH' >> ~/.bashrc
source ~/.bashrc
```
Re-check Version:
```sh
ssh -V
```
Lastly, restart your system.
Optional Additional Checks (optional):
```sh
which ssh
```
If output is /usr/bin/ssh or /usr/sbin/ssh, it's an older version.
```sh
ls -l /usr/bin/ssh /usr/local/bin/ssh /usr/sbin/sshd /usr/local/sbin/sshd
```
If /usr/local/bin/ssh and /usr/local/sbin/sshd exist, the new OpenSSH is installed.
Please note that these instructions are for educational purposes only and should be performed with caution. Always ensure you have proper backups before applying any security updates.
回复

使用道具 举报

您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

Archiver|手机版|小黑屋|一元网络论坛

GMT+8, 2024-12-23 02:31 , Processed in 0.069910 second(s), 19 queries .

Powered by Discuz! X3.4

Copyright © 2001-2020, Tencent Cloud.

快速回复 返回顶部 返回列表