Confirmation version OpenSSH and How can I upgrade if is the case

This post was originally published on this site

Hello Everyone,


I have ESXi 6.7 P03 build number 16713306. I would like to know the confirmation from someone about how can I get the OpenSSH version running on it. I did SSH to my server. Then I typed this command vi /etc/ssh/sshd_config. The comment says OpenSSH 7.8. Please see the image below. If it is correct. So, how can I upgrade OpenSSH to version 7.9. I found the documentation where it says: “CVE-2018-20685: VMware included a fix in the OpenSSH version 7.9 included in ESXi 6.7 Update 2 and later. This issue is fixed in the evaluated patch release”. My client used a program to scan the whole system, part of it shows this is a vulnerability that I have to fix by upgrading it. The system suggests upgrading to version 7.6. However, I don’t understand why still show me is a vulnerability if is a higher version that they suggested. I think, that I have to upgrade the OpenSSH to 7.9.

I appreciated your time to respond to me.



Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.