お久しぶりの名前とアイコン付きのやつだ(不謹慎)。更新しとこう。
OpenSSH Vulnerability: CVE-2024-6387 FAQs and Resources | Qualys https://www.qualys.com/regresshion-cve-2024-6387/
Ubuntu 22.04.4 LTS
$ sudo sh -c 'apt update && apt dist-upgrade -y'
:
The following packages have been kept back:
python3-update-manager ubuntu-advantage-tools ubuntu-pro-client
ubuntu-pro-client-l10n update-manager-core
The following packages will be upgraded:
openssh-client openssh-server openssh-sftp-server
3 upgraded, 0 newly installed, 0 to remove and 5 not upgraded.
3 standard LTS security updates
:
$ cat /var/run/reboot-required*
cat: '/var/run/reboot-required*': No such file or directory
タブンヨシ
Ubuntu 20.04.6 LTS
$ sudo sh -c 'apt update && apt dist-upgrade -y'
:
The following packages will be upgraded:
libpq-dev libpq5 ubuntu-advantage-tools ubuntu-pro-client
ubuntu-pro-client-l10n
5 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
:
影響範囲をちゃんと読もう
Ubuntu 20.04 (Focal)のopensshには影響なし、
Ubuntu 22.04 (Jammy)のopensshは1:8.9p1-3ubuntu0.10で対応ずみ、とのこと。