This means a lot of work for a lot of people around the globe 😐
Backdoor Found in XZ Tools Used by Most Linux Distros
Red Hat warns users to immediately stop using systems running Fedora development and experimental versions because of a backdoor found in the latest XZ Utils data compression tools and libraries.
https://www.nobsbitcoin.com/backdoor-in-xz-tools-used-by-most-linux-distros/
Discussion
"You need to have your SSH port exposed to the public internet"
There's never a legitimate reason to expose the SSH port to the public.
If you do, this vulnerability isn't your only problem.
It doesn’t matter if your ssh port is public available or not, your system becomes vulnerable with this CVE.