Lucene search
SuseOPENSUSE-SU-2019:1113-1HistoryApr 02, 2019 - 12:00 a.m.
Security update for putty (moderate)
2019-04-0200:00:00
lists.opensuse.org
106
0.035 Low
EPSS
Percentile
91.6%
An update that fixes 5 vulnerabilities is now available.
Description:
This update for putty fixes the following issues:
Update to new upstream release 0.71 [boo#1129633]
- CVE-2019-9894: Fixed a remotely triggerable memory overwrite in RSA key
exchange, which can occur before host key verification potential
recycling of random numbers used in cryptography. - CVE-2019-9895: Fixed a remotely triggerable buffer overflow in any kind
of server-to-client forwarding. - CVE-2019-9897: Fixed multiple denial-of-service attacks that can be
triggered by writing to the terminal. - CVE-2019-9898: Fixed potential recycling of random numbers used in
cryptography - CVE-2019-9896 (Windows only): Fixed hijacking by a malicious help file
in the same directory as the executable - Major rewrite of the crypto code to remove cache and timing side
channels.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1113=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.0 | x86_64 | < - openSUSE Leap 15.0 (x86_64): | - openSUSE Leap 15.0 (x86_64):.x86_64.rpm |
Related
nessus
nessus
PuTTY < 0.71 Multiple Vulnerabilities
2019-03-27 00:00:00
openSUSE Security Update : putty (openSUSE-2019-1113)
2019-04-03 00:00:00
Fedora 29 : putty (2019-5776dfe300)
2019-03-27 00:00:00
openvas
openvas
openSUSE: Security Advisory for putty (openSUSE-SU-2019:1113-1)
2019-04-03 00:00:00
Debian: Security Advisory (DSA-4423-1)
2019-04-06 00:00:00
Fedora Update for putty FEDORA-2019-5776dfe300
2019-05-07 00:00:00
suse
suse
Security update for putty (moderate)
2019-04-02 00:00:00
osv
osv
putty - security update
2019-04-03 00:00:00
putty - security update
2019-04-24 00:00:00
CVE-2019-9898
2019-03-21 16:01:17
mageia
mageia
Updated putty/filezilla/wxgtk packages fix security vulnerability
2019-05-08 00:38:09
redhatcve
redhatcve
CVE-2019-9897
2022-05-20 23:09:40
CVE-2019-9895
2022-05-21 00:07:22
debian
debian
[SECURITY] [DSA 4423-1] putty security update
2019-04-03 19:46:49
[SECURITY] [DLA 1763-1] putty security update
2019-04-24 21:25:54
fedora
fedora
[SECURITY] Fedora 29 Update: putty-0.71-1.fc29
2019-03-27 15:02:09
[SECURITY] Fedora 30 Update: putty-0.71-1.fc30
2019-03-29 19:39:01
[SECURITY] Fedora 28 Update: putty-0.71-1.fc28
2019-03-29 02:05:15
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2019-03-21 16:01:00
Code injection
2019-03-21 16:01:00
Denial of service
2019-03-21 16:01:00
nvd
nvd
cvelist
cvelist
debiancve
debiancve
cve
cve
veracode
veracode
Authorization Bypass
2020-09-21 06:40:21
Denial Of Service (DoS)
2020-09-21 06:39:51
Arbitrary Memory Overwrite
2020-09-21 06:33:23
alpinelinux
alpinelinux