You are not logged in.
Is Arch affected by this?
Offline
As I understand the different reports it all goes back to the Debian patched and unfortunately flawed version of SSH implementation. I've seen other reports suggesting that those running system with keys generated in Debian before the fix, might be forced to do some awkward security measures (like backup data-bases and write zeros to hard-drives, and move the data-base back).
Hence I shouldn't affect Arch, as I understand it, unless you use some keys generated in a Debian system.
Offline
We never applied the patch here so keys generated on Arch are fine. However any system which has users whose keys were generated on a debian install affected by that patch is vulnerable.
Offline