heh. I was going to post this earlier but I didn't have a proper write up for it.

The OpenSSH hole is annoying as hell. It means that everybody has to suddenly go out and patch/upgrade untold numbers of systems as normally the SSH port would be open.

If you've not got enough time then firewalling the SSH port and only allowing authorised IP addresses (static only though!) to connect should mitigate some of the risk but it's best to upgrade still.