Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/putty@0?distro=trixie
purl pkg:deb/debian/putty@0?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-26s5-my22-cqaq In PuTTY versions before 0.71 on Windows, local attackers could hijack the application by putting a malicious help file in the same directory as the executable. CVE-2019-9896
VCID-px5z-rr8a-4fea PuTTY before 0.75 on Windows allows remote servers to cause a denial of service (Windows GUI hang) by telling the PuTTY window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls. NOTE: the same attack methodology may affect some OS-level GUIs on Linux or other platforms for similar reasons. CVE-2021-33500
VCID-qjwh-5833-u3gq Multiple untrusted search path vulnerabilities in Putty beta 0.67 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) UxTheme.dll or (2) ntmarta.dll file in the current working directory. CVE-2016-6167
VCID-ze9r-u2f1-mkfe PuTTY before 0.73 on Windows improperly opens port-forwarding listening sockets, which allows attackers to listen on the same port to steal an incoming connection. CVE-2019-17067

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:47:44.485995+00:00 Debian Importer Fixing VCID-26s5-my22-cqaq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:54:58.874885+00:00 Debian Importer Fixing VCID-px5z-rr8a-4fea https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:33:13.882280+00:00 Debian Importer Fixing VCID-ze9r-u2f1-mkfe https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:11:46.484206+00:00 Debian Importer Fixing VCID-qjwh-5833-u3gq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:46:38.513831+00:00 Debian Importer Fixing VCID-26s5-my22-cqaq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:08:01.121166+00:00 Debian Importer Fixing VCID-px5z-rr8a-4fea https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:52:34.634289+00:00 Debian Importer Fixing VCID-ze9r-u2f1-mkfe https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:09:16.337415+00:00 Debian Importer Fixing VCID-qjwh-5833-u3gq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:50:29.303974+00:00 Debian Importer Fixing VCID-px5z-rr8a-4fea https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:50:29.167627+00:00 Debian Importer Fixing VCID-26s5-my22-cqaq https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:50:28.994782+00:00 Debian Importer Fixing VCID-ze9r-u2f1-mkfe https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:50:28.918571+00:00 Debian Importer Fixing VCID-qjwh-5833-u3gq https://security-tracker.debian.org/tracker/data/json 38.1.0