Dozens of Vulnerable NuGet Packages Allow Attackers to Target .NET Platform

An analysis of off-the-shelf packages hosted on the NuGet repository has revealed 51 unique software components to be vulnerable to actively exploited, high-severity vulnerabilities, once again underscoring the threat posed by third-party dependencies to the software development process. In light...

PuTTY (European Commission - DIGIT): puttygen: 160MB memory leak while trying to extract openssh public key from crafted key file

Summary: After downloading putty-0.70-2019-01-17.53747ad.tar.gz, I compiled it on Debian 9 with Clang-8.0.0 and AddressSanitizer. A 160000844 byte 160MB memory leak happens while trying to extract an OpenSSH public key from a crafted key file. Description: puttygen does not sufficiently track and...

PuTTY v.0.61 New Version released After 4 years

PuTTY v.0.61 New Version released After 4 years After four Years, Putty's New version finally Released today.Here are the PuTTY files themselves: PuTTY the Telnet and SSH client itself PSCP an SCP client, i.e. command-line secure file copy PSFTP an SFTP client, i.e. general file transfer sessions...