12 matches found
CVE-2015-5309
Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...
CVE-2015-5309
PuTTY before 0.66 contains a memory‑corrupting integer overflow in handling the ECH (erase characters) escape sequence, allowing a remote attacker to cause DoS or potentially execute arbitrary code via a large parameter value. This affects PuTTY’s terminal emulator. Debian advisories (DSA-3409) a...
CVE-2015-5309
Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...
Fedora Update for putty FEDORA-2015-5
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-3409-1 : putty - security update
A memory-corrupting integer overflow in the handling of the ECH erase characters control sequence was discovered in PuTTY's terminal emulator. A remote attacker can take advantage of this flaw to mount a denial of service or potentially to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable...
[SECURITY] [DSA 3409-1] putty security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3409-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 01, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3409-1] putty security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3409-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 01, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 347-1] putty security update
Package : putty Version : 0.60+2010-02-20-1+squeeze4 CVE ID : CVE-2015-5309 It was discovered that PuTTYs terminal emulator did not properly validate the parameter to the ECH erase characters control sequence, allowing a denial of service and possibly remote code execution...
openSUSE Security Update : putty (openSUSE-2015-766)
PuTTY was updated to 0.66 to fix security issues and bugs. The following vulnerabilities were fixed : - CVE-2015-5309: Malicious ECH control sequences could have caused an integer overflow, buffer underrun in terminal emulator bnc954191 Also contains all bug fixes up to the 0.66 release...
Mageia: Security Advisory (MGASA-2015-0442)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2015-0442 Updated putty packages fix security vulnerability
Versions of PuTTY 0.54 and 0.65 inclusive have a potentially memory-corrupting integer overflow in the handling of the ECH erase characters control sequence in the terminal emulator CVE-2015-5309...
Updated putty packages fix security vulnerability
Versions of PuTTY 0.54 and 0.65 inclusive have a potentially memory-corrupting integer overflow in the handling of the ECH erase characters control sequence in the terminal emulator CVE-2015-5309...