Techly NewsGet the app

Get the latest tech news

'Critical' vulnerability in OpenSSH uncovered, affects almost all Linux systems


Researchers at the Qualys Threat Research Unit (TRU) have unearthed discovered a critical security flaw in OpenSSH's server (sshd) in glibc-based Linux systems.

The vulnerability is "a signal handler race condition in OpenSSH's server (sshd)", according to Bharat Jogi, senior director at Qualys TRU, in a post on the company's website. Nevertheless, the researchers say, given the risk posed by regreSHHion, organisations should take immediate measures to locate and secure vulnerable systems applying patches, reconfiguring sshd and segmenting networks, where possible. Using the Censys and Shodan search engines, TRU researchers identified over 14 million potentially vulnerable OpenSSH server instances exposed to the internet.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Linux

Linux

Photo of vulnerability

vulnerability

Photo of Linux systems

Linux systems

Related news:

News photo

AMD Landing ISP 4.x IP In Linux 6.11, Strix Point & Granite Ridge IP Versions Confirmed

News photo

RegreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems

News photo

RISC-V Memory Hot Plugging To Be Introduced With Linux 6.11

« Beijing says state owns China's rare earth metals
My Python code is a neural network »