AlmaLinux 9 User Note: A new vulnerability was found in the OpenSSH server (sshd) affecting the Linux system based on glibc. This issue is similar to last week's CVE-2024-6387 and also affects Linux systems based on glibc. This new vulnerability (CVE-2024-6409) involves signal handler race conditions that can put your system at potential security risks.
In AlmaLinux, security is the top priority. The AlmaLinux Enterprise Linux Steering Committee (ALESCo) decides to build and release updates quickly without waiting for updates from CentOS Stream or RHEL.
The OpenSSH hotfix for CVE-2024-6409 has been released and is available for AlmaLinux OS 9 users.
To protect your AlmaLinux system from the OpenSSH CVE-2024-6409 vulnerability, simply update your existing OpenSSH package with the following command:
sudo dnf --refresh upgrade openssh
After the update, verify that you have the correct version installed:
rpm -q openssh
Find version number openssh-8.7p1-38.el9_4.1.alma.1 . This release contains the necessary security fixes.
By updating your OpenSSH package, you can ensure that your system is protected from newly discovered vulnerabilities.
Remember that system security is an ongoing process. Check and apply updates regularly to ensure your AlmaLinux OS 9 installation is protected from the latest known vulnerabilities.
Related resources:
The above is the detailed content of AlmaLinux 9 Released The OpenSSH Patch For CVE-2024-6409. For more information, please follow other related articles on the PHP Chinese website!