Ubuntu Security Notice USN-6887-1

==========================================================================Ubuntu Security Notice USN-6887-1July 09, 2024openssh vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.04 LTSSummary:OpenSSH could be made to expose timing information over the network.Software Description:- openssh: secure shell (SSH) for secure access to remote machinesDetails:Philippos Giavridis, Jacky Wei En Kung, Daniel Hugenroth, and AlastairBeresford discovered that the OpenSSH ObscureKeystrokeTiming feature didnot work as expected. A remote attacker could possibly use this issue todetermine timing information about keystrokes.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 24.04 LTS   openssh-client                  1:9.6p1-3ubuntu13.4   openssh-server                  1:9.6p1-3ubuntu13.4In general, a standard system update will make all the necessary changes.References:   https://ubuntu.com/security/notices/USN-6887-1   CVE-2024-39894Package Information:   https://launchpad.net/ubuntu/+source/openssh/1:9.6p1-3ubuntu13.4