[Bug 231726] New: CVE-2006-7162: putty <= 0.59 file permissions issues
bugzilla at redhat.com
bugzilla at redhat.com
Sat Mar 10 21:28:59 UTC 2007
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=231726
Summary: CVE-2006-7162: putty <= 0.59 file permissions issues
Product: Fedora Extras
Version: fc6
Platform: All
OS/Version: Linux
Status: NEW
Severity: medium
Priority: medium
Component: putty
AssignedTo: jima at beer.tclug.org
ReportedBy: ville.skytta at iki.fi
QAContact: extras-qa at fedoraproject.org
CC: fedora-security-list at redhat.com
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-7162
"PuTTY 0.59 and earlier uses weak file permissions for (1) ppk files containing
private keys generated by puttygen and (2) session logs created by putty, which
allows local users to gain sensitive information by reading these files."
FE5+ seemingly affected.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the Fedora-security-list
mailing list