Mailinglist Archive: opensuse-updates (98 mails)

< Previous Next >
openSUSE-SU-2015:0474-1: moderate: Security update for putty
openSUSE Security Update: Security update for putty

Announcement ID: openSUSE-SU-2015:0474-1
Rating: moderate
References: #920167
Cross-References: CVE-2015-2157
Affected Products:
openSUSE 13.2
openSUSE 13.1

An update that fixes one vulnerability is now available.


The SSH Terminal emulator putty was updated to the new upstream release
0.64, fixing security issues and bugs:

Security fix: PuTTY no longer retains the private half of users' keys in
memory by mistake after authenticating with them. [bsc#920167]

New feature: Support for SSH connection sharing, so that multiple
instances of PuTTY to the same host can share a single SSH connection
of all having to log in independently.

Bug fix: IPv6 literals are handled sensibly throughout the suite, if you
enclose them in square brackets to prevent the colons being mistaken for a
:port suffix.

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

- openSUSE 13.2:

zypper in -t patch openSUSE-2015-218=1

- openSUSE 13.1:

zypper in -t patch openSUSE-2015-218=1

To bring your system up-to-date, use "zypper patch".

Package List:

- openSUSE 13.2 (i586 x86_64):


- openSUSE 13.1 (i586 x86_64):



< Previous Next >
This Thread
  • No further messages