Publishing details

Published on 2013-08-07

Changelog

putty (0.62-6ubuntu0.1) precise; urgency=low

  * CVE-2013-4206: Buffer underrun in modmul could corrupt the heap.
  * CVE-2013-4852: Negative string length in public-key signatures could
    cause integer overflow and overwrite all of memory (closes: #718779).
  * CVE-2013-4207: Non-coprime values in DSA signatures can cause buffer
    overflow in modular inverse.
  * CVE-2013-4208: Private keys were left in memory after being used by
    PuTTY tools.
  * Backport some general proactive potentially-security-relevant tightening
    from upstream.
 -- Colin Watson <email address hidden>   Wed, 07 Aug 2013 11:44:22 +0100

Available diffs

diff from 0.62-6 (in Debian) to 0.62-6ubuntu0.1 (10.3 KiB)

Builds

amd64
i386

Built packages

pterm PuTTY terminal emulator

putty Telnet/SSH client for X

putty-doc PuTTY HTML documentation

putty-tools command-line tools for SSH, SCP, and SFTP

Package files

pterm_0.62-6ubuntu0.1_amd64.deb (196.7 KiB)
pterm_0.62-6ubuntu0.1_i386.deb (193.4 KiB)
putty-doc_0.62-6ubuntu0.1_all.deb (170.1 KiB)
putty-tools_0.62-6ubuntu0.1_amd64.deb (699.9 KiB)
putty-tools_0.62-6ubuntu0.1_i386.deb (687.7 KiB)
putty_0.62-6ubuntu0.1.debian.tar.gz (24.6 KiB)
putty_0.62-6ubuntu0.1.dsc (2.1 KiB)
putty_0.62-6ubuntu0.1_amd64.deb (339.1 KiB)
putty_0.62-6ubuntu0.1_i386.deb (332.1 KiB)
putty_0.62.orig.tar.gz (1.7 MiB)