Security update for putty
The SSH Terminal emulator putty was updated to the new upstream release 0.64, fixing security issues and bugs:
Security fix:
PuTTY no longer retains the private half of users' keys in memory by mistake after authenticating with them.
[bsc#920167] (CVE-2015-2157)
New feature:
Support for SSH connection sharing, so that multiple instances of
PuTTY to the same host can share a single SSH connection instead
of all having to log in independently.
Bug fix:
IPv6 literals are handled sensibly throughout the suite,
if you enclose them in square brackets to prevent the colons
being mistaken for a :port suffix.
-
Submitted by
Jan Engelhardt (jengelh)
Fixed bugs
bnc#920167
VUL-0: CVE-2015-2157: PuTTY fails to clear private key information from memory
