RCE vulnerability in OpenSSH – RegreSSHion (CVE-2024-6387)

This report details CVE-2024-6387 (“regreSSHion”), a high-severity remote code execution vulnerability in OpenSSH on glibc-based Linux (affected versions <4.4p1 and 8.5p1–9.7p; OpenBSD unaffected), caused by a regression of an older bug; it advises immediate upgrades to OpenSSH 9.8 or patched distro packages, minimizing SSH exposure to trusted networks, strengthening authentication and monitoring, and, if patching is not possible, setting LoginGraceTime=0 to remove RCE risk at the cost of potential DoS, noting active PoCs and the potential for real-world exploitation despite complexity.