TWSD-1206 - [JP] HSOL-4275 MIZUHO Bank / APV / OpenSSH Vulnerability / CVE-2025-61984

Review Request #1167 — Created Nov. 17, 2025 and submitted Nov. 24, 2025, 11:30 a.m.

Information
Owner:	kevin.poh
Repository:	APV10
Branch:	rel_apv_10_7
Bugs:	TWSD-1206
Depends On:
Reviewers
Groups:
People:	mingji, peteryeh, weikai

Description

Update OpenSSH to version 10.1p1 from 10.0p2

Testing Done

The Japan team reported a vulnerability (CVE-2025-61984), and the recommended fix is to update to version 10.1, which already includes the patch.

Ship it!

```
Ship It!
```

Ship it!

```
Ship It!
```

Since HA depends on OpenSSH, and Array added the parameter on its own,
you should verify whether the upgrade was successful by testing the HA functionality.

Testing Done:

~		The Japan team reported a vulnerability (CVE-2025-61984), and the recommended fix is to update to version 10.1, which already includes the patch. After updating the array.patch and other related files, I rebuilt the APV and the build completed without errors.
	~	The Japan team reported a vulnerability (CVE-2025-61984), and the recommended fix is to update to version 10.1, which already includes the patch.

Change Summary:

Build successfully and already checked HA has no problem

Diff:

Revision 2 (+1013 -153)

Show changes

	branches/rel_apv_10_7/usr/click/bin/openssh/Makefile
	branches/rel_apv_10_7/usr/click/bin/openssh/array.patch
	branches/rel_apv_10_7/usr/click/bin/openssh/build.sh
	branches/rel_apv_10_7/usr/click/bin/openssh/openssh-10.1p1.tar.gz
	branches/rel_apv_10_7/usr/click/bin/openssh/sshd-auth.patch
	branches/rel_apv_10_7/usr/click/bin/openssh/sshd-auth_patch.c

Ship it!

```
Ship It!
```

You have a pending review.

Review Board 5.0.5

TWSD-1206 - [JP] HSOL-4275 MIZUHO Bank / APV / OpenSSH Vulnerability / CVE-2025-61984

Testing Done:

Change Summary:

Diff:

Status: Closed (submitted)