Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Can sandbox isolation stop malware?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/154-can-sandbox-isolation-stop-malware?task=poll.vote&format=json
154
radio
0
[{"id":497,"title":"Breaches happen despite container barriers.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":498,"title":"Supply chain flaws exploit trust.","votes":2,"type":"x","order":2,"pct":100,"resources":[]},{"id":499,"title":"Flawed configurations expose vital files.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
203

Mageia 9: 2025-0157 moderate: openssh DisableForwarding directive flaw

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding. (CVE-2025-32728) References: . MGASA-2025-0157 - Updated openssh packages fix security vulnerability Publication date: 16 May 2025 URL: https://advisories.mageia.org/MGASA-2025-0157.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-32728 In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding. (CVE-2025-32728) References: - https://bugs.mageia.org/show_bug.cgi?id=34224 - https://ubuntu.com/security/notices/USN-7457-1 - https://www.cve.org/CVERecord?id=CVE-2025-32728 SRPMS: - 9/core/openssh-9.3p1-2.5.mga9 . OpenSSH revision tackles the DisableForwarding setting concern in Mageia 9. Discover the resolution and security repercussions.. Mageia security advisory, OpenSSH X11, agent forwarding issue, security update, Mageia 9 advisory. . LinuxSecurity.com Team

Calendar%202 May 16, 2025 Mageia
197

Debian 11: DLA-4156-1 critical: openssh DisableForwarding security issue

Tim Rice discovered that the DisableForwarding directive was documented as disabling X11 and agent forwarding but it failed to do so. For Debian 11 bullseye, this problem has been fixed in version . ------------------------------------------------------------------------- Debian LTS Advisory DLA-4156-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Colin Watson May 08, 2025 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : openssh Version : 1:8.4p1-5+deb11u5 CVE ID : CVE-2025-32728 Debian Bug : 1102603 Tim Rice discovered that the DisableForwarding directive was documented as disabling X11 and agent forwarding but it failed to do so. For Debian 11 bullseye, this problem has been fixed in version 1:8.4p1-5+deb11u5. We recommend that you upgrade your openssh packages. For the detailed security status of openssh please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/openssh Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Update OpenSSH on Debian 11 to mitigate the DisableForwarding vulnerability, enhancing the security of both X11 and agent forwarding functionalities.. openssh security, Debian 11 update, DisableForwarding issue. . LinuxSecurity.com Team

Calendar%202 May 08, 2025 Debian LTS
98

Red Hat 7: RHSA-2000:111-03 Critical: OpenSSH Agent Forwarding Threat

Updated openssh packages are now available for Red Hat Linux 7.. ` --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Updated openssh packages available for Red Hat Linux 7 Advisory ID: RHSA-2000:111-03 Issue date: 2000-11-20 Updated on: 2000-11-21 Product: Red Hat Linux Keywords: openssh malicious server port forwarding Cross references: N/A --------------------------------------------------------------------- 1. Topic: Updated openssh packages are now available for Red Hat Linux 7. 2. Relevant releases/architectures: Red Hat Linux 7.0 - i386 Red Hat Linux 7.0J - i386 3. Problem description: An OpenSSH client will do agent or X11 forwarding at the request of a server, even if the user has not requested that it be done. A malicious server can exploit this vulnerability to gain access to the user's display. 4. Solution: For each RPM for your particular architecture, run: rpm -Fvh [filename] where filename is the name of the RPM. 5. Bug IDs fixed ( for more info): 18598 - ssh-keygen -l does not work for dsa keys 20805 - Hostile servers can force OpenSSH clients to do agent or X11 forwarding 20884 - openssh-2.3.0p1 doesn't include /etc/ssh/primes 6. RPMs required: Red Hat Linux 7.0: i386: sources: 7. Verification: MD5 sum Package Name -------------------------------------------------------------------------- d564b593cce6c1afaa02a11004ef6cf7 7.0/SRPMS/openssh-2.3.0p1-4.src.rpm 973c033bd3cf3e3641f7fb9d172baf5a 7.0/i386/openssh-2.3.0p1-4.i386.rpm ead1cc84519f5a6fa0233ce8d3237457 7.0/i386/openssh-askpass-2.3.0p1-4.i386.rpm d426ff6c55181f8ccbea6e2f7a307b99 7.0/i386/openssh-askpass-gnome-2.3.0p1-4.i386.rpm 51fe082e6830e461a900000e2884cb14 7.0/i386/openssh-clients-2.3.0p1-4.i386.rpm dd9bb3271403162202599d3cd8b9a22e 7.0/i386/openssh-server-2.3.0p1-4.i386.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at: You can verify each package with the following command: rpm --checksig If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: rpm --checksig --nogpg 8. References: OpenBSD 2.7 Errata Copyright(c) 2000 Red Hat, Inc. `. New releases of OpenSSH modules for Red Hat Linux 7 have been issued to address security flaws and improve the safety of user interactions.. OpenSSH Packages, Red Hat, Agent Forwarding Issue, Security Flaws, System Update. . LinuxSecurity.com Team

Calendar%202 Nov 22, 2000 Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Can sandbox isolation stop malware?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/154-can-sandbox-isolation-stop-malware?task=poll.vote&format=json
154
radio
0
[{"id":497,"title":"Breaches happen despite container barriers.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":498,"title":"Supply chain flaws exploit trust.","votes":2,"type":"x","order":2,"pct":100,"resources":[]},{"id":499,"title":"Flawed configurations expose vital files.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Your message here