putty is vulnerable to information disclosure. An Observable Discrepancy results in an information disclosure in the algorithm negotiation.
CPE | Name | Operator | Version |
---|---|---|---|
putty:3.12 | eq | 0.73-r2 | |
putty:3.10 | eq | 0.73-r2 | |
putty:3.11 | eq | 0.73-r2 | |
putty:3.11 | eq | 0.73-r0 | |
putty | eq | 0.73-r0 | |
putty:edge | eq | 0.73-r2 | |
putty:3.12 | eq | 0.73-r2 | |
putty:3.10 | eq | 0.73-r2 | |
putty:3.11 | eq | 0.73-r2 | |
putty:3.11 | eq | 0.73-r0 |
lists.fedoraproject.org/archives/list/[email protected]/message/26TACCSQYYCPWAJYNAUIXJGZ5RGORJZV/
lists.fedoraproject.org/archives/list/[email protected]/message/JPV4A77EDCT4BTFO5BE26ZH72BG4E5IJ/
lists.tartarus.org/pipermail/putty-announce/
security.netapp.com/advisory/ntap-20200717-0003/
www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/