CVE-2024-6387 (aka regreSSHion) is a Remote Unauthenticated Code Execution vulnerability in sshd in glibc-based Linux systems, discovered by Qualys.
OpenSSH versions impacted:
OpenSSH versions earlier than 4.4p1
OpenSSH versions between 8.5p1 and 9.8p1
Can you please confirm the latest version if v9.5.0.0p1-Beta is vulnerable? Is there a plan to address regreSSHion in an upcoming "production ready" release?
Summary of the new feature / enhancement
Request for Information
Proposed technical implementation details (optional)
CVE-2024-6387 (aka regreSSHion) is a Remote Unauthenticated Code Execution vulnerability in sshd in glibc-based Linux systems, discovered by Qualys.
OpenSSH versions impacted: OpenSSH versions earlier than 4.4p1 OpenSSH versions between 8.5p1 and 9.8p1
Can you please confirm the latest version if v9.5.0.0p1-Beta is vulnerable? Is there a plan to address regreSSHion in an upcoming "production ready" release?