Format: 1.8
Date: Wed, 07 Aug 2013 11:48:47 +0100
Source: putty
Binary: pterm putty putty-tools putty-doc
Architecture: source
Version: 0.62-9ubuntu0.1
Distribution: quantal
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Changed-By: Colin Watson <cjwatson@ubuntu.com>
Description: 
 pterm      - PuTTY terminal emulator
 putty      - Telnet/SSH client for X
 putty-doc  - PuTTY HTML documentation
 putty-tools - command-line tools for SSH, SCP, and SFTP
Closes: 718779
Changes: 
 putty (0.62-9ubuntu0.1) quantal; urgency=low
 .
   * CVE-2013-4206: Buffer underrun in modmul could corrupt the heap.
   * CVE-2013-4852: Negative string length in public-key signatures could
     cause integer overflow and overwrite all of memory (closes: #718779).
   * CVE-2013-4207: Non-coprime values in DSA signatures can cause buffer
     overflow in modular inverse.
   * CVE-2013-4208: Private keys were left in memory after being used by
     PuTTY tools.
   * Backport some general proactive potentially-security-relevant tightening
     from upstream.
Checksums-Sha1: 
 4726c550dac9974074c01d6c2b7b8211995d8efb 2155 putty_0.62-9ubuntu0.1.dsc
 7be70b98760363c514bfa9e5ecb7416faffe3dae 28527 putty_0.62-9ubuntu0.1.debian.tar.gz
Checksums-Sha256: 
 dcb7e13e89a082a488c77111bf4131bda296c57bf3be90cf2ca2b48dcf2bc16e 2155 putty_0.62-9ubuntu0.1.dsc
 47a399544cc02f3d842510c5ff384908d2f6e61c3774ded8ebe4b26edca02ff7 28527 putty_0.62-9ubuntu0.1.debian.tar.gz
Files: 
 f092a721660284fcdd830dd40e288aed 2155 net optional putty_0.62-9ubuntu0.1.dsc
 781ae2e574aa3094e8c9a819a8070336 28527 net optional putty_0.62-9ubuntu0.1.debian.tar.gz
Original-Maintainer: Colin Watson <cjwatson@debian.org>