In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding. (CVE-2025-32728) References: . MGASA-2025-0157 - Updated openssh packages fix security vulnerability Publication date: 16 May 2025 URL: https://advisories.mageia.org/MGASA-2025-0157.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-32728 In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding. (CVE-2025-32728) References: - https://bugs.mageia.org/show_bug.cgi?id=34224 - https://ubuntu.com/security/notices/USN-7457-1 - https://www.cve.org/CVERecord?id=CVE-2025-32728 SRPMS: - 9/core/openssh-9.3p1-2.5.mga9 . OpenSSH revision tackles the DisableForwarding setting concern in Mageia 9. Discover the resolution and security repercussions.. Mageia security advisory, OpenSSH X11, agent forwarding issue, security update, Mageia 9 advisory. . LinuxSecurity.com Team
Tim Rice discovered that the DisableForwarding directive was documented as disabling X11 and agent forwarding but it failed to do so. For Debian 11 bullseye, this problem has been fixed in version . ------------------------------------------------------------------------- Debian LTS Advisory DLA-4156-1
Updated openssh packages are now available for Red Hat Linux 7.. ` --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Updated openssh packages available for Red Hat Linux 7 Advisory ID: RHSA-2000:111-03 Issue date: 2000-11-20 Updated on: 2000-11-21 Product: Red Hat Linux Keywords: openssh malicious server port forwarding Cross references: N/A --------------------------------------------------------------------- 1. Topic: Updated openssh packages are now available for Red Hat Linux 7. 2. Relevant releases/architectures: Red Hat Linux 7.0 - i386 Red Hat Linux 7.0J - i386 3. Problem description: An OpenSSH client will do agent or X11 forwarding at the request of a server, even if the user has not requested that it be done. A malicious server can exploit this vulnerability to gain access to the user's display. 4. Solution: For each RPM for your particular architecture, run: rpm -Fvh [filename] where filename is the name of the RPM. 5. Bug IDs fixed ( for more info): 18598 - ssh-keygen -l does not work for dsa keys 20805 - Hostile servers can force OpenSSH clients to do agent or X11 forwarding 20884 - openssh-2.3.0p1 doesn't include /etc/ssh/primes 6. RPMs required: Red Hat Linux 7.0: i386: sources: 7. Verification: MD5 sum Package Name -------------------------------------------------------------------------- d564b593cce6c1afaa02a11004ef6cf7 7.0/SRPMS/openssh-2.3.0p1-4.src.rpm 973c033bd3cf3e3641f7fb9d172baf5a 7.0/i386/openssh-2.3.0p1-4.i386.rpm ead1cc84519f5a6fa0233ce8d3237457 7.0/i386/openssh-askpass-2.3.0p1-4.i386.rpm d426ff6c55181f8ccbea6e2f7a307b99 7.0/i386/openssh-askpass-gnome-2.3.0p1-4.i386.rpm 51fe082e6830e461a900000e2884cb14 7.0/i386/openssh-clients-2.3.0p1-4.i386.rpm dd9bb3271403162202599d3cd8b9a22e 7.0/i386/openssh-server-2.3.0p1-4.i386.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at: You can verify each package with the following command: rpm --checksig If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: rpm --checksig --nogpg 8. References: OpenBSD 2.7 Errata Copyright(c) 2000 Red Hat, Inc. `. New releases of OpenSSH modules for Red Hat Linux 7 have been issued to address security flaws and improve the safety of user interactions.. OpenSSH Packages, Red Hat, Agent Forwarding Issue, Security Flaws, System Update. . LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.