设为首页收藏本站
切换到宽版

全球主机交流论坛

 找回密码
 注册

QQ登录

只需一步,快速开始

全球主机交流论坛»论坛 主机综合交流 美国VPS综合讨论 这次的ssh漏洞有什么官方稳妥解决方法没?debian12 ...
IP归属甄别会员请立即修改密码
12345下一页
返回列表 发新帖
楼主: biubiu
打印 上一主题 下一主题

这次的ssh漏洞有什么官方稳妥解决方法没?debian12

[复制链接]
jpfree
31#
发表于 2024-7-2 12:53:46 | 只看该作者
本帖最后由 jpfree 于 2024-7-2 14:22 编辑
yajian 发表于 2024-7-2 12:18
直接apt升级就行了,其实漏洞5月份就已经提供给开发者了,现在补丁都打好了,才公开出来。

对了,有的mirr ...

  1. root@debian:~# ssh -V
  2. OpenSSH_9.2p1 Debian-2+deb12u2, OpenSSL 3.0.13 30 Jan 2024
  3. root@debian:~# apt update -y
  4. Hit:1 http://deb.debian.org/debian bookworm InRelease
  5. Hit:2 https://download.docker.com/linux/debian bookworm InRelease
  6. Reading package lists... Done
  7. Building dependency tree... Done
  8. Reading state information... Done
  9. All packages are up to date.
  10. W: Target Sources (main/source/Sources) is configured multiple times in /etc/apt/sources.list:3 and /etc/apt/sources.list:7
  11. W: Target Sources (non-free-firmware/source/Sources) is configured multiple times in /etc/apt/sources.list:3 and /etc/apt/sources.list:7
  12. W: Target Packages (main/binary-amd64/Packages) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  13. W: Target Packages (main/binary-all/Packages) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  14. W: Target Translations (main/i18n/Translation-en_US) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  15. W: Target Translations (main/i18n/Translation-en) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  16. W: Target Packages (non-free-firmware/binary-amd64/Packages) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  17. W: Target Packages (non-free-firmware/binary-all/Packages) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  18. W: Target Translations (non-free-firmware/i18n/Translation-en_US) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  19. W: Target Translations (non-free-firmware/i18n/Translation-en) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  20. W: Target Sources (main/source/Sources) is configured multiple times in /etc/apt/sources.list:3 and /etc/apt/sources.list:7
  21. W: Target Sources (non-free-firmware/source/Sources) is configured multiple times in /etc/apt/sources.list:3 and /etc/apt/sources.list:7
  22. W: Target Packages (main/binary-amd64/Packages) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  23. W: Target Packages (main/binary-all/Packages) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  24. W: Target Translations (main/i18n/Translation-en_US) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  25. W: Target Translations (main/i18n/Translation-en) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  26. W: Target Packages (non-free-firmware/binary-amd64/Packages) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  27. W: Target Packages (non-free-firmware/binary-all/Packages) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  28. W: Target Translations (non-free-firmware/i18n/Translation-en_US) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  29. W: Target Translations (non-free-firmware/i18n/Translation-en) is configured multiple times in /etc/apt/sources.list:1 and /etc/apt/sources.list:5
  30. root@debian:~# cat /etc/apt/sources.list
  31. deb http://deb.debian.org/debian bookworm main non-free-firmware

  33. deb-src http://deb.debian.org/debian bookworm main non-free-firmware

  35. deb http://security.debian.org/debian-security bookworm-security main non-free-firmware
  36. deb-src http://security.debian.org/debian-security bookworm-security main non-free-firmware
  37. root@debian:~# apt upgrade -y
  38. Reading package lists... Done
  39. Building dependency tree... Done
  40. Reading state information... Done
  41. Calculating upgrade... Done
  42. 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
  43. root@debian:~# apt upgrade openssh-server
  44. Reading package lists... Done
  45. Building dependency tree... Done
  46. Reading state information... Done
  47. openssh-server is already the newest version (1:9.2p1-2+deb12u2).
  48. Calculating upgrade... Done
  49. 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
  50. root@debian:~# ssh -V
  51. OpenSSH_9.2p1 Debian-2+deb12u2, OpenSSL 3.0.13 30 Jan 2024
  52. root@debian:~#
复制代码



好了,复制粘贴搞错了。。。。
root@debian:/etc/apt/sources.list.d# ssh -V
OpenSSH_9.2p1 Debian-2+deb12u3, OpenSSL 3.0.13 30 Jan 2024
回复 支持 反对

举报

nosec
32#
发表于 2024-7-2 13:24:07 | 只看该作者
这些漏洞信息 在哪里可以第一时间及时看到呀 谢谢
回复 支持 反对

举报

nosec
33#
发表于 2024-7-2 13:25:09 | 只看该作者
icon 发表于 2024-7-2 11:36
昨天还在说centos7.9养老的出来说说

centos7.9 怎么办?换Debian吗?
回复 支持 反对

举报

summer365
34#
发表于 2024-7-2 13:35:22 | 只看该作者
icon 发表于 2024-7-2 12:11
是官方源,然而,没有安全更新的?

deb http://security.debian.org/debian-security bookworm-security  ...

加上更新完成了
回复 支持 反对

举报

雷猴
35#
发表于 2024-7-2 13:40:15 | 只看该作者
直接更新ssh不就行了吗?
回复 支持 反对

举报

icon
36#
发表于 2024-7-2 16:02:28 | 只看该作者
nosec 发表于 2024-7-2 13:25
centos7.9 怎么办?换Debian吗?

换成那几个平替centos的操作系统也可以,换成debian什么也可以,看自己习惯了。不过在loc混的话都喜欢用debian,哈。。。
如果实在还是想centos,就自己编译源码更新吧,毕竟这种ssh漏洞也是几十年一遇的。
回复 支持 反对

举报

Perfwiki
37#
发表于 2024-7-2 16:47:36 | 只看该作者
提示: 作者被禁止或删除 内容自动屏蔽
回复 支持 反对

举报

い深度
38#
发表于 2024-7-2 17:26:28 | 只看该作者
  1. apt update && apt upgrade -y
复制代码
回复 支持 反对

举报

biubiu
39#
 楼主| 发表于 2024-7-4 17:27:19 | 只看该作者
い深度 发表于 2024-7-2 17:26

这样直接也可以吗
回复 支持 反对

举报

い深度
40#
发表于 2024-7-5 12:08:06 | 只看该作者
biubiu 发表于 2024-7-4 17:27
这样直接也可以吗

可以的,更新后的版本修复了
回复 支持 反对

举报

下一页 »
12345下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

Archiver|手机版|小黑屋|全球主机交流论坛

GMT+8, 2025-9-23 21:22 , Processed in 0.058303 second(s), 6 queries , Gzip On, MemCache On.

Powered by Discuz! X3.4

© 2001-2023 Discuz! Team.

快速回复 返回顶部 返回列表