Overview

File _patchinfo of Package patchinfo.38179

<patchinfo incident="38179">
  <issue tracker="cve" id="2025-32728"/>
  <issue tracker="bnc" id="1241012">VUL-0: CVE-2025-32728: openssh: fix logic error in DisableForwarding option</issue>
  <issue tracker="bnc" id="1241045">L3: ssh-keysign seems that cannot handle kex algo > 256 bits</issue>
  <issue tracker="bnc" id="1228634">audit: hostname in op=login msgs is always '?' on SLES 15 SP5]</issue>
  <issue tracker="bnc" id="1232533">OpenSSH_8.4p1, OpenSSH 9.6p1, denial of service ssh when /etc/ motd is set too large(&gt;18kb)</issue>
  <packager>hpjansson</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for openssh</summary>
  <description>This update for openssh fixes the following issues:

- Security issues fixed:
    
  * CVE-2025-32728: Fixed a logic error in DisableForwarding option (bsc#1241012)
    
- Other bugs fixed:

  * Allow KEX hashes greater than 256 bits (bsc#1241045)
  * Fixed hostname being left out of the audit output (bsc#1228634)
  * Fixed failures with very large MOTDs (bsc#1232533)

</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places