When might Ubuntu 22.04 upgrade OpenSSH to address CVE-2024-6387? The packaged version OpenSSH server (sshd) 9.8p1 , has a critical exploit Race Condition
This race condition can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.
