[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2020-0003":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":18,"duplicates":19,"related":20,"reserved_at":9,"published_at":23,"modified_at":24,"state":9,"summary":25,"references_raw":27,"kevs":52,"epss":9,"epss_history":53,"metrics":54,"affected":55},"MGASA-2020-0003","Updated putty packages fix security vulnerabilities\n\nUpdated putty package fixes security vulnerabilities:\n\nTwo separate vulnerabilities affecting the obsolete SSH-1 protocol, both\navailable before host key checking.\n\nVulnerability in all the SSH client tools (PuTTY, Plink, PSFTP, and PSCP)\nif a malicious program can impersonate Pageant.\n\nCrash in GSSAPI / Kerberos key exchange triggered if the server provided\nan ordinary SSH host key as part of the exchange.\n\nInsufficient handling of terminal escape sequences, that should delimit\nthe pasted data in bracketed paste mode (CVE-2019-17068).\n\nPossible information leak caused by SSH-1 disconnection messages\n(CVE-2019-17069).\n\nThe putty package has been updated to version 0.73, fixing theese issues\nand other bugs.\n",null,[],[],[],[14,16],{"_key":15},"CVE-2019-17068",{"_key":17},"CVE-2019-17069",[],[],[21,22],{"_key":15},{"_key":17},"2020-01-05T15:37:51Z","2026-04-16T04:26:08.123031Z",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[28,34,39,44,48],{"url":29,"sources":30,"tags":32},"https://advisories.mageia.org/MGASA-2020-0003.html",[31],"osv_mageia",[33],"Advisory",{"url":35,"sources":36,"tags":37},"https://bugs.mageia.org/show_bug.cgi?id=25760",[31],[38],"REPORT",{"url":40,"sources":41,"tags":42},"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",[31],[38,43],"WEB",{"url":45,"sources":46,"tags":47},"https://lists.opensuse.org/opensuse-updates/2019-08/msg00170.html",[31],[38,43],{"url":49,"sources":50,"tags":51},"https://lists.opensuse.org/opensuse-updates/2019-10/msg00047.html",[31],[38,43],[],[],[],[56],{"ecosystem":57,"name":58,"vendor":59,"product":58,"cpe_part":9,"purl_type":60,"purl_namespace":59,"purl_name":58,"source":9,"versions":61},"Mageia","putty","mageia","rpm",[62],{"version":63,"is_range":64,"range_type":65,"version_start":9,"version_start_type":9,"version_end":66,"version_end_type":67,"fixed_in":9},"lt0_73_1_mga7",true,"ecosystem","0.73-1.mga7","excluding"]