[ubuntu/saucy-proposed] putty 0.63-1 (Accepted)
Colin Watson
cjwatson at canonical.com
Wed Aug 7 11:14:48 UTC 2013
putty (0.63-1) unstable; urgency=low
* New upstream release.
- CVE-2013-4206: Buffer underrun in modmul could corrupt the heap.
- CVE-2013-4852: Negative string length in public-key signatures could
cause integer overflow and overwrite all of memory (closes: #718779).
- CVE-2013-4207: Non-coprime values in DSA signatures can cause buffer
overflow in modular inverse.
- CVE-2013-4208: Private keys were left in memory after being used by
PuTTY tools.
- Allow using a bold colour and a bold font at the same time (closes:
#193352).
- Use a monotonic clock (closes: #308552).
* Switch to the Autotools-based build system.
* Upgrade to debhelper v9.
Date: 2013-08-07 10:18:08.912483+00:00
Changed-By: Colin Watson <cjwatson at canonical.com>
https://launchpad.net/ubuntu/saucy/+source/putty/0.63-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Saucy-changes
mailing list