|
|
|
|
|
|
by mzajc
716 days ago
|
|
|
For those running Debian Bookworm and potentially others - judging by the result message this seems to use the banner version to decide whether or not you're vulnerable. For me it says "OpenSSH_9.2p1 is potentially vulnerable to regreSSHion (CVE-2024-6387)", but the vulnerability has been patched by Debian themselves without incrementing the version visible in the banner. The patched package version is "1:9.2p1-2+deb12u3". |
|
|
---
Ubuntu did the same thing for 22.04. Patched in "1:8.9p1-3ubuntu0.10".