PuTTY (European Commission - DIGIT): puttygen: heap-buffer-overflow in mp_get_decimal()

Summary: After downloading putty-0.70-2019-01-17.53747ad.tar.gz, I compiled it on Debian 9 with Clang-8.0.0 and AddressSanitizer and while trying to extract a public key from a crafted key file, I triggered a heap-buffer-overflow in mpgetdecimal. Description: A buffer overflow condition exists wh...