So glad I have been procrastinating upgrading the distribution on my one server with a public facing sshd port*. OpenSSH has remained old enough to not have the current flaw..
(* non standard port, which at least avoids most of the port-scanning script-kiddies.)