@r000t Provided your GNU/Linux system is 64-bit and has ALSR enabled, there's a good chance your system would take years to exploit, so you can update openssh a bit later if you don't mind risking it.

The bug existed for quite a while and there doesn't seem to be any cases of reported exploitation.