[SECURITY] [DSA 4423-1] putty security update

ID DEBIAN:DSA-4423-1:B02B7
Type debian
Reporter Debian
Modified 2019-04-03T19:47:04


Debian Security Advisory DSA-4423-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff April 03, 2019 https://www.debian.org/security/faq

Package : putty CVE ID : CVE-2019-9894 CVE-2019-9895 CVE-2019-9897 CVE-2019-9898

Multiple vulnerabilities were found in the PuTTY SSH client, which could result in denial of service and potentially the execution of arbitrary code. In addition, in some situations random numbers could potentially be re-used.

For the stable distribution (stretch), these problems have been fixed in version 0.67-3+deb9u1.

We recommend that you upgrade your putty packages.

For the detailed security status of putty please refer to its security tracker page at: https://security-tracker.debian.org/tracker/putty

Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org