Search for packages
| purl | pkg:deb/ubuntu/putty@0.69-2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-578f-zwyb-aaac
Aliases: CVE-2019-17068 |
PuTTY before 0.73 mishandles the "bracketed paste mode" protection mechanism, which may allow a session to be affected by malicious clipboard content. |
Affected by 0 other vulnerabilities. |
|
VCID-6un4-nzgb-aaak
Aliases: CVE-2019-17069 |
PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial of service by accessing freed memory locations via an SSH1_MSG_DISCONNECT message. |
Affected by 0 other vulnerabilities. |
|
VCID-ah15-cney-aaaa
Aliases: CVE-2019-9895 |
In PuTTY versions before 0.71 on Unix, a remotely triggerable buffer overflow exists in any kind of server-to-client forwarding. |
Affected by 2 other vulnerabilities. |
|
VCID-fv5j-z33q-aaap
Aliases: CVE-2019-9898 |
Potential recycling of random numbers used in cryptography exists within PuTTY before 0.71. |
Affected by 2 other vulnerabilities. |
|
VCID-mjdj-hpjv-aaaj
Aliases: CVE-2019-9894 |
A remotely triggerable memory overwrite in RSA key exchange in PuTTY before 0.71 can occur before host key verification. |
Affected by 2 other vulnerabilities. |
|
VCID-t391-f1q1-aaap
Aliases: CVE-2019-9897 |
Multiple denial-of-service attacks that can be triggered by writing to the terminal exist in PuTTY versions before 0.71. |
Affected by 2 other vulnerabilities. |
|
VCID-yfyf-tvd9-aaan
Aliases: CVE-2017-6542 |
The ssh_agent_channel_data function in PuTTY before 0.68 allows remote attackers to have unspecified impact via a large length value in an agent protocol message and leveraging the ability to connect to the Unix-domain socket representing the forwarded agent connection, which trigger a buffer overflow. |
Affected by 6 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|