PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial of service by accessing freed memory locations via an SSH1_MSG_DISCONNECT message.
References
Link | Resource |
---|---|
https://lists.tartarus.org/pipermail/putty-announce/2019/000029.html | Mailing List Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00021.html | Mailing List Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00020.html | Mailing List Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00030.html | Mailing List Third Party Advisory |
https://security.netapp.com/advisory/ntap-20191127-0003/ | Third Party Advisory |
Information
Published : 2019-10-01 10:15
Updated : 2022-03-31 10:54
NVD link : CVE-2019-17069
Mitre link : CVE-2019-17069
JSON object : View
CWE
CWE-416
Use After Free
Products Affected
netapp
- oncommand_unified_manager_core_package
opensuse
- leap
putty
- putty