SUSE-SU-2025:01638-2
- Source
- https://www.suse.com/support/update/announcement/2025/suse-su-202501638-2/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:01638-2.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2025:01638-2
- Upstream
- Related
- Published
- 2025-06-06T10:04:40Z
- Modified
- 2026-03-11T07:27:53.226699Z
- Summary
- Security update for openssh
- Details
-
This update for openssh fixes the following issue:
Security fixes:
- CVE-2025-32728: Fixed logic error in DisableForwarding option (bsc#1241012)
Other fixes: - Fix ssh client segfault with GSSAPIKeyExchange=yes in ssh_kex2 due to gssapi proposal not being correctly initialized (bsc#1236826). The problem was introduced in the rebase of the patch for 9.6p1 - Enable --with-logind to call the SetTTY dbus method in systemd. This allows 'wall' to print messages in ssh ttys (bsc#1239671)
- References
Affected packages
SUSE:Linux Enterprise Module for Basesystem 15 SP7
openssh
Package
- Name
- openssh
- Purl
- pkg:rpm/suse/openssh&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed9.6p1-150600.6.26.1
Ecosystem specific
{
"binaries": [
{
"openssh-helpers": "9.6p1-150600.6.26.1",
"openssh-server-config-disallow-rootlogin": "9.6p1-150600.6.26.1",
"openssh-server": "9.6p1-150600.6.26.1",
"openssh": "9.6p1-150600.6.26.1",
"openssh-clients": "9.6p1-150600.6.26.1",
"openssh-fips": "9.6p1-150600.6.26.1",
"openssh-common": "9.6p1-150600.6.26.1"
}
]
}