OpenSSH: race condition in sshd allows remote code execution

Tmpod@lemmy.pt to Linux@lemmy.ml – 227 points –
stackdiary.com

cross-posted from: https://lemmy.pt/post/5733711

A severe vulnerability in OpenSSH, dubbed "regreSSHion" (CVE-2024-6387), has been discovered by the Qualys Threat Research Unit, potentially exposing

27

You are viewing a single comment
View all commentsShow the parent comment

Most images and distros are just Raspbian at their core and as such are pretty easy to upgrade.

I upgraded my homebridge/pihole from Bullseye to Bookworm just a few days ago and it went off without a hitch.

Did the same with raspi3... It broke too many things for me and couldn't be restarted. I then completely reinstalled it.

Aww that sucks. To be fair I did take a full image backup before attempting the upgrade in case something went awry.

I also had a complete backup, but I was also considering reinstalling it at the time anyway. Accordingly, only partially restored data. But you should definitely make a backup, that's true.