NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
a1966dc62c
kumquat-buildroot/package/putty
History
Fabrice Fontaine 08f9aeefe5 package/putty: fix CVE-2021-36367 
PuTTY through 0.75 proceeds with establishing an SSH session even if it
has never sent a substantive authentication response. This makes it
easier for an attacker-controlled SSH server to present a later spoofed
authentication prompt (that the attacker can use to capture credential
data, and use that data for purposes that are undesired by the client
user).

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
(cherry picked from commit 1352b59eb2)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2021-08-03 21:54:01 +02:00
..
0001-unix-uxutils.h-fix-build-on-uclibc.patch package/putty: fix build on uclibc 2021-08-03 21:51:47 +02:00
0002-New-option-to-reject-trivial-success-of-userauth.patch package/putty: fix CVE-2021-36367 2021-08-03 21:54:01 +02:00
Config.in
putty.hash
putty.mk package/putty: fix CVE-2021-36367 2021-08-03 21:54:01 +02:00