Closed travier closed 2 months ago
Technically it's pending a package update in Fedora.
Update with the backported fix for F40 https://bodhi.fedoraproject.org/updates/FEDORA-2024-dc89a2e1bf
I did https://github.com/coreos/fedora-coreos-config/actions/runs/9757857281 to fast-track it and it gets me:
Exception: Package openssh-9.6p1-1.fc40.4 doesn't match expected dist tag .fc40
Did a manual fasttrack: https://github.com/coreos/fedora-coreos-config/pull/3047
Alternative mitigation in https://social.treehouse.systems/@marcan/112715795823895634:
echo 'OPTIONS=-e' | sudo tee -a /etc/sysconfig/sshd && sudo systemctl restart sshd
This was fixed in testing 40.20240701.2.0 and next 40.20240701.1.0. Currently, we are not planning an ad-hoc release for stable; it'll ship in stable next week.
The fix for this went into stable
stream release 40.20240701.3.0
.
See:
They only have working exploits for i686 right now.
The configuration workarounds are not ideal unfortunately: https://lwn.net/ml/all/4f270df5-2b24-979d-c03f-6d8f3b9d007d@mindrot.org/