Control: tags -1 + confirmed On Wed, 2025-04-23 at 12:52 +0100, Colin Watson wrote: > The security team marked CVE-2025-32728 (#1102603) as no-dsa, but I'd > like to at least get the fix into the next stable point release. > > The bug is not a regression from any version I know of; it's present > back to at least stretch. > > [ Impact ] > The DisableForwarding option in sshd_config doesn't do what it says > in the documentation in terms of disabling X11 and agent forwarding > (both of which are enabled by default in Debian; in the former case > this is Debian-specific).
Please go ahead. Regards, Adam
