Earlier this week Qualys announced two critical vulnerabilities for OpenSSH - CVE-2025-26465 and 2025-26466. We are looking for helping testing the patches for CVE-2025-26465. The Qualys Threat Research Unit (TRU) has identified two vulnerabilities in OpenSSH. The first, tracked as CVE-2025-26465, allows an active machine-in-the-middle attack on the OpenSSH client when the VerifyHostKeyDNS option is enabled. The second, CVE-2025-26466, affects both the OpenSSH client and server, enabling a pr...| AlmaLinux OS
If you are running an AlmaLinux OS 9 machine, you need to know about a vulnerability in OpenSSH’s server (sshd) in glibc-based Linux systems that was published earlier today, July 1, 2024. It has been assigned the identifier CVE-2024-6387 and named regreSSHion. This vulnerability is exploitable remotely and grants unauthenticated root access. Security is our top priority at AlmaLinux and we aim to deliver patches to our users as quickly as possible.| AlmaLinux OS
It’s hard to believe that the first AlmaLinux stable release was over three years ago, but what a ride it’s been! In those three years, we’ve grown from a small group of interested hobbyists and professionals to a fully formed organization, 501(c)(6) registered, with contributors of all types from every stretch of the globe. To say we’re proud of the progress we’ve seen and how the Linux community has adopted us would be an understatement, and with that support comes a responsibilit...| AlmaLinux OS
Learn more about Fedora Linux, the Fedora Project & the Fedora Community.| Fedora Docs