Dr. Hax on Nostr: Pre-auth RCE as root in OpenSSH. Debian gives more details than just saying it's a ...
Published at
2024-07-02 08:41:45Event JSON
{
"id": "0446818b6dd6f6c36d95290879266fb92280d0b4cf9d274563aff9f00d1e96e1",
"pubkey": "d30ea98ea65e953f91ab93f6b30ea51eb33c506f87d49f600a139aef00aa9511",
"created_at": 1719902505,
"kind": 1,
"tags": [
[
"r",
"https://www.openssh.com/txt/release-9.8"
],
[
"r",
"https://security-tracker.debian.org/tracker/CVE-2024-6387"
],
[
"r",
"https://vuxml.freebsd.org/freebsd/f1a00122-3797-11ef-b611-84a93843eb75.html"
]
],
"content": "Pre-auth RCE as root in OpenSSH.\nhttps://www.openssh.com/txt/release-9.8\n\nDebian gives more details than just saying it's a race condition. https://security-tracker.debian.org/tracker/CVE-2024-6387\n\nFreeBSD confirms they are affected too, meaning it's not just a Linux problem (despite what some Linux haters are saying). https://vuxml.freebsd.org/freebsd/f1a00122-3797-11ef-b611-84a93843eb75.html",
"sig": "538cda2924e5047e48e3511d817176b5e204cad45f22146023d5c9d21f0ffb4adb9bb4cfeb5a5a8049e26b16aeab0b3016766a8636947e3f4eb06eb8de72eca9"
}