CVE-2025-32728

Опубликовано: 10 апр. 2025

Источник: debian

Описание

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
openssh	fixed	1:10.0p1-1		package
openssh	fixed	1:9.2p1-2+deb12u6	bookworm	package

Примечания

https://lists.mindrot.org/pipermail/openssh-unix-dev/2025-April/041879.html
Fixed by: https://github.com/openssh/openssh-portable/commit/fc86875e6acb36401dfc1dfb6b628a9d1460f367 (V_10_0_P1)

Связанные уязвимости

CVE-2025-32728

CVSS3: 4.3

ubuntu

7 месяцев назад

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.

CVE-2025-32728

CVSS3: 4.3

redhat

7 месяцев назад

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.

CVE-2025-32728

CVSS3: 4.3

nvd

7 месяцев назад

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.

CVE-2025-32728

CVSS3: 3.8

msrc

7 месяцев назад

Описание отсутствует

SUSE-SU-2025:1576-1

suse-cvrf

6 месяцев назад

Security update for openssh