Overview

File _patchinfo of Package patchinfo.37744

<patchinfo incident="37744">
  <issue tracker="cve" id="2025-32728"/>
  <issue tracker="bnc" id="1241012">VUL-0: CVE-2025-32728: openssh: fix logic error in DisableForwarding option</issue>
  <issue tracker="bnc" id="1239671">SLES 15 SP7 Beta4 - wall tool not longer printing any message to terminals</issue> 
  <issue tracker="bnc" id="1236826">SSH client segfaults in ssh_kex2()</issue>
  <packager>alarrosa</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for openssh</summary>
  <description>This update for openssh fixes the following issue:

Security fixes:

- CVE-2025-32728: Fixed logic error in DisableForwarding option (bsc#1241012)

Other fixes:
- Fix ssh client segfault with GSSAPIKeyExchange=yes in ssh_kex2
  due to gssapi proposal not being correctly initialized (bsc#1236826).
  The problem was introduced in the rebase of the patch for 9.6p1
- Enable --with-logind to call the SetTTY dbus method in systemd.
  This allows "wall" to print messages in ssh ttys (bsc#1239671)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places