{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"Low" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"openssh security update", "category":"general", "title":"Synopsis" }, { "text":"An update for openssh is now available for openEuler-22.03-LTS-SP3", "category":"general", "title":"Summary" }, { "text":"OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \\ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \\ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \\ capabilities, several authentication methods, and sophisticated configuration options.\n\nSecurity Fix(es):\n\nOpenSSH (OpenBSD Secure Shell) is a set of connection tools for secure access to remote computers in the Canadian OpenBSD program group. This tool is an open source implementation of the SSH protocol, supports encryption of all transmissions, and can effectively prevent eavesdropping, connection hijacking, and other network-level attacks.\n OpenSSH (OpenBSD Secure Shell) versions before 10.0 have a security vulnerability that originated from the DisableForwarding directive that does not correctly disable X11 and proxy forwarding.(CVE-2025-32728)", "category":"general", "title":"Description" }, { "text":"An update for openssh is now available for openEuler-22.03-LTS-SP3.\n\nopenEuler Security has rated this update as having a security impact of low. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"Low", "category":"general", "title":"Severity" }, { "text":"openssh", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2025-1664", "category":"self", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1664" }, { "summary":"CVE-2025-32728", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-32728&packageName=openssh" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2025-32728" }, { "summary":"openEuler-SA-2025-1664 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2025/csaf-openeuler-sa-2025-1664.json" } ], "title":"An update for openssh is now available for openEuler-22.03-LTS-SP3", "tracking":{ "initial_release_date":"2025-06-20T21:40:08+08:00", "revision_history":[ { "date":"2025-06-20T21:40:08+08:00", "summary":"Initial", "number":"1.0.0" } ], "generator":{ "date":"2025-06-20T21:40:08+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2025-06-20T21:40:08+08:00", "id":"openEuler-SA-2025-1664", "version":"1.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openEuler-22.03-LTS-SP3", "name":"openEuler-22.03-LTS-SP3" }, "name":"openEuler-22.03-LTS-SP3", "category":"product_version" } ], "category":"product_name" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-8.8p1-35.oe2203sp3.src.rpm", "name":"openssh-8.8p1-35.oe2203sp3.src.rpm" }, "name":"openssh-8.8p1-35.oe2203sp3.src.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-8.8p1-35.oe2203sp3.x86_64.rpm", "name":"openssh-8.8p1-35.oe2203sp3.x86_64.rpm" }, "name":"openssh-8.8p1-35.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-askpass-8.8p1-35.oe2203sp3.x86_64.rpm", "name":"openssh-askpass-8.8p1-35.oe2203sp3.x86_64.rpm" }, "name":"openssh-askpass-8.8p1-35.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-clients-8.8p1-35.oe2203sp3.x86_64.rpm", "name":"openssh-clients-8.8p1-35.oe2203sp3.x86_64.rpm" }, "name":"openssh-clients-8.8p1-35.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64.rpm", "name":"openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64.rpm" }, "name":"openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-debugsource-8.8p1-35.oe2203sp3.x86_64.rpm", "name":"openssh-debugsource-8.8p1-35.oe2203sp3.x86_64.rpm" }, "name":"openssh-debugsource-8.8p1-35.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-keycat-8.8p1-35.oe2203sp3.x86_64.rpm", "name":"openssh-keycat-8.8p1-35.oe2203sp3.x86_64.rpm" }, "name":"openssh-keycat-8.8p1-35.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-server-8.8p1-35.oe2203sp3.x86_64.rpm", "name":"openssh-server-8.8p1-35.oe2203sp3.x86_64.rpm" }, "name":"openssh-server-8.8p1-35.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64.rpm", "name":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64.rpm" }, "name":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"noarch", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-help-8.8p1-35.oe2203sp3.noarch.rpm", "name":"openssh-help-8.8p1-35.oe2203sp3.noarch.rpm" }, "name":"openssh-help-8.8p1-35.oe2203sp3.noarch.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-8.8p1-35.oe2203sp3.aarch64.rpm", "name":"openssh-8.8p1-35.oe2203sp3.aarch64.rpm" }, "name":"openssh-8.8p1-35.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-askpass-8.8p1-35.oe2203sp3.aarch64.rpm", "name":"openssh-askpass-8.8p1-35.oe2203sp3.aarch64.rpm" }, "name":"openssh-askpass-8.8p1-35.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-clients-8.8p1-35.oe2203sp3.aarch64.rpm", "name":"openssh-clients-8.8p1-35.oe2203sp3.aarch64.rpm" }, "name":"openssh-clients-8.8p1-35.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64.rpm", "name":"openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64.rpm" }, "name":"openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-debugsource-8.8p1-35.oe2203sp3.aarch64.rpm", "name":"openssh-debugsource-8.8p1-35.oe2203sp3.aarch64.rpm" }, "name":"openssh-debugsource-8.8p1-35.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-keycat-8.8p1-35.oe2203sp3.aarch64.rpm", "name":"openssh-keycat-8.8p1-35.oe2203sp3.aarch64.rpm" }, "name":"openssh-keycat-8.8p1-35.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openssh-server-8.8p1-35.oe2203sp3.aarch64.rpm", "name":"openssh-server-8.8p1-35.oe2203sp3.aarch64.rpm" }, "name":"openssh-server-8.8p1-35.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64.rpm", "name":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64.rpm" }, "name":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-8.8p1-35.oe2203sp3.src.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.src", "name":"openssh-8.8p1-35.oe2203sp3.src as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-8.8p1-35.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.x86_64", "name":"openssh-8.8p1-35.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-askpass-8.8p1-35.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-askpass-8.8p1-35.oe2203sp3.x86_64", "name":"openssh-askpass-8.8p1-35.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-clients-8.8p1-35.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-clients-8.8p1-35.oe2203sp3.x86_64", "name":"openssh-clients-8.8p1-35.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64", "name":"openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-debugsource-8.8p1-35.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-debugsource-8.8p1-35.oe2203sp3.x86_64", "name":"openssh-debugsource-8.8p1-35.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-keycat-8.8p1-35.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-keycat-8.8p1-35.oe2203sp3.x86_64", "name":"openssh-keycat-8.8p1-35.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-server-8.8p1-35.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-server-8.8p1-35.oe2203sp3.x86_64", "name":"openssh-server-8.8p1-35.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64", "name":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-help-8.8p1-35.oe2203sp3.noarch.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-help-8.8p1-35.oe2203sp3.noarch", "name":"openssh-help-8.8p1-35.oe2203sp3.noarch as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-8.8p1-35.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.aarch64", "name":"openssh-8.8p1-35.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-askpass-8.8p1-35.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-askpass-8.8p1-35.oe2203sp3.aarch64", "name":"openssh-askpass-8.8p1-35.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-clients-8.8p1-35.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-clients-8.8p1-35.oe2203sp3.aarch64", "name":"openssh-clients-8.8p1-35.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64", "name":"openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-debugsource-8.8p1-35.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-debugsource-8.8p1-35.oe2203sp3.aarch64", "name":"openssh-debugsource-8.8p1-35.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-keycat-8.8p1-35.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-keycat-8.8p1-35.oe2203sp3.aarch64", "name":"openssh-keycat-8.8p1-35.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"openssh-server-8.8p1-35.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:openssh-server-8.8p1-35.oe2203sp3.aarch64", "name":"openssh-server-8.8p1-35.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64", "name":"pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2025-32728", "notes":[ { "text":"OpenSSH (OpenBSD Secure Shell) is a set of connection tools for secure access to remote computers in the Canadian OpenBSD program group. This tool is an open source implementation of the SSH protocol, supports encryption of all transmissions, and can effectively prevent eavesdropping, connection hijacking, and other network-level attacks.\n OpenSSH (OpenBSD Secure Shell) versions before 10.0 have a security vulnerability that originated from the DisableForwarding directive that does not correctly disable X11 and proxy forwarding.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.src", "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-askpass-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-clients-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-debugsource-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-keycat-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-server-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-help-8.8p1-35.oe2203sp3.noarch", "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-askpass-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-clients-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-debugsource-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-keycat-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-server-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.src", "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-askpass-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-clients-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-debugsource-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-keycat-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-server-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-help-8.8p1-35.oe2203sp3.noarch", "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-askpass-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-clients-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-debugsource-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-keycat-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-server-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64" ], "details":"openssh security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1664" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"LOW", "baseScore":3.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.src", "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-askpass-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-clients-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-debuginfo-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-debugsource-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-keycat-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-server-8.8p1-35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:openssh-help-8.8p1-35.oe2203sp3.noarch", "openEuler-22.03-LTS-SP3:openssh-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-askpass-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-clients-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-debuginfo-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-debugsource-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-keycat-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:openssh-server-8.8p1-35.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:pam_ssh_agent_auth-0.10.4-4.35.oe2203sp3.aarch64" ] } ], "threats":[ { "details":"Low", "category":"impact" } ], "title":"CVE-2025-32728" } ] }