CVE-2024-6387 - regreSSHion

CVE-2024-6387 - RegreSSHion

CVE-2024-6387 - mitigation for Rocky Linux 9


The instructions below will disable the security-common repository so that only openssh from sig-security will be used.

The release package can be installed on other Enterprise Linux distributions. See sig-security wiki for more information.

  1. Install the SIG/Security release file
dnf install rocky-release-security
  1. Disable SIG/Security security-common repo
dnf config-manager --disable security-common
  1. Upgrade openssh
dnf --enablerepo=security-common update openssh\*
  1. Confirm version is installed
rpm -q openssh