更新Openssh
受CVE-2024-6387漏洞影响,各大版本的openssh基本上都要更新(这个漏洞存在于 OpenSSH < 4.4p1 或 8.5p1 <= OpenSSH < 9.8p1 的版本中),目前各大版本也都发布了安全更新,debian/ubuntu系升级主要两条指令:
sudo apt update
sudo apt install --only-upgrade openssh-server升级后,确认一下版本:
ssh -Vdebian:
bullseye (security), bullseye 1:8.4p1-5+deb11u3 bookworm (security) 1:9.2p1-2+deb12u3 sid 1:9.7p1-7ubuntu:
jammy Released (1:8.9p1-3ubuntu0.10) mantic Released (1:9.3p1-1ubuntu3.6) noble Released (1:9.6p1-3ubuntu13.3)