putty: security bump to version 0.71 - buildroot

diff options

author	Baruch Siach <baruch@tkos.co.il>	2019-03-24 21:21:13 +0200
committer	Peter Korsgaard <peter@korsgaard.com>	2019-03-28 10:24:19 +0100
commit	709ae653f340bd92d5e1bdfed7959c491cbe5862 (patch)
tree	abfdec6637bdc027a74e8453965e36e9c674c4e4 /package/python-ipython
parent	1d45e1b5bbfb070de4549decce81715d42acc571 (diff)
download	buildroot-709ae653f340bd92d5e1bdfed7959c491cbe5862.tar.gz buildroot-709ae653f340bd92d5e1bdfed7959c491cbe5862.zip

putty: security bump to version 0.71

CVE-2019-9894: A remotely triggerable memory overwrite in RSA key exchange can occur before host key verification. CVE-2019-9895: A remotely triggerable buffer overflow exists in any kind of server-to-client forwarding. CVE-2019-9897: Multiple denial-of-service attacks that can be triggered by writing to the terminal. CVE-2019-9898: Potential recycling of random numbers used in cryptography. Disable static build for now. When building statically configure defines NO_GSSAPI. Build with NO_GSSAPI is currently broken. The issue has been reported upstream. Cc: Alexander Dahl <post@lespocky.de> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit b6f47c0a4327074c0aff80cc2b2e22e5c8eef692) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

Diffstat (limited to 'package/python-ipython')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: