Accepting request 734492 from X11:Utilities

add CVE markers
- Update to release 0.73

OBS-URL: https://build.opensuse.org/request/show/734492
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/putty?expand=0&rev=24
This commit is contained in:
Dominique Leuenberger 2019-10-02 10:00:49 +00:00 committed by Git OBS Bridge
commit 625b0e3a32
7 changed files with 39 additions and 23 deletions

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:f236b5a26b0905809b3cd190158e8b95d81f86ad34fdd97a4312c1877f2cec5f
size 2449516

Binary file not shown.

3
putty-0.73.tar.gz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:3db0b5403fb41aecd3aa506611366650d927650b6eb3d839ad4dcc782519df1c
size 2459115

BIN
putty-0.73.tar.gz.gpg Normal file

Binary file not shown.

View File

@ -10,10 +10,10 @@
windows/windefs.c | 2 +-
3 files changed, 35 insertions(+), 22 deletions(-)
Index: putty-0.72/settings.c
Index: putty-0.73/settings.c
===================================================================
--- putty-0.72.orig/settings.c
+++ putty-0.72/settings.c
--- putty-0.73.orig/settings.c
+++ putty-0.73/settings.c
@@ -17,8 +17,8 @@
static const struct keyvalwhere ciphernames[] = {
{ "aes", CIPHER_AES, -1, -1 },
@ -32,7 +32,7 @@ Index: putty-0.72/settings.c
+ gpps(sesskey, "TerminalType", "linux", conf, CONF_termtype);
gpps(sesskey, "TerminalSpeed", "38400,38400", conf, CONF_termspeed);
if (gppmap(sesskey, "TerminalModes", conf, CONF_ttymodes)) {
/*
/*
@@ -1029,10 +1029,10 @@ void load_open_settings(settings_r *sess
gppb(sesskey, "PassiveTelnet", false, conf, CONF_passive_telnet);
gppb(sesskey, "BackspaceIsDelete", true, conf, CONF_bksp_is_delete);
@ -89,12 +89,12 @@ Index: putty-0.72/settings.c
@@ -1124,11 +1124,28 @@ void load_open_settings(settings_r *sess
for (i = 0; i < 22; i++) {
static const char *const defaults[] = {
- "187,187,187", "255,255,255", "0,0,0", "85,85,85", "0,0,0",
- "0,255,0", "0,0,0", "85,85,85", "187,0,0", "255,85,85",
- "0,187,0", "85,255,85", "187,187,0", "255,255,85", "0,0,187",
- "85,85,255", "187,0,187", "255,85,255", "0,187,187",
- "85,255,255", "187,187,187", "255,255,255"
static const char *const defaults[] = {
- "187,187,187", "255,255,255", "0,0,0", "85,85,85", "0,0,0",
- "0,255,0", "0,0,0", "85,85,85", "187,0,0", "255,85,85",
- "0,187,0", "85,255,85", "187,187,0", "255,255,85", "0,0,187",
- "85,85,255", "187,0,187", "255,85,255", "0,187,187",
- "85,255,255", "187,187,187", "255,255,255"
+ "170,170,170", /* default foreground */
+ "255,255,255", /* default bold foreground */
+ "0,0,0", /* default background */
@ -117,9 +117,9 @@ Index: putty-0.72/settings.c
+ "0,255,255", /* cyan bold */
+ "170,170,170", /* white */
+ "255,255,255", /* white bold */
};
char buf[20], *buf2;
int c0, c1, c2;
};
char buf[20], *buf2;
int c0, c1, c2;
@@ -1186,7 +1203,7 @@ void load_open_settings(settings_r *sess
* The empty default for LineCodePage will be converted later
* into a plausible default for the locale.
@ -129,10 +129,10 @@ Index: putty-0.72/settings.c
gppb(sesskey, "CJKAmbigWide", false, conf, CONF_cjk_ambig_wide);
gppb(sesskey, "UTF8Override", true, conf, CONF_utf8_override);
gpps(sesskey, "Printer", "", conf, CONF_printer);
Index: putty-0.72/unix/unix.h
Index: putty-0.73/unix/unix.h
===================================================================
--- putty-0.72.orig/unix/unix.h
+++ putty-0.72/unix/unix.h
--- putty-0.73.orig/unix/unix.h
+++ putty-0.73/unix/unix.h
@@ -400,11 +400,7 @@ Socket *make_fd_socket(int infd, int out
/*
* Default font setting, which can vary depending on NOT_X_WINDOWS.
@ -146,10 +146,10 @@ Index: putty-0.72/unix/unix.h
/*
* uxpty.c.
Index: putty-0.72/windows/windefs.c
Index: putty-0.73/windows/windefs.c
===================================================================
--- putty-0.72.orig/windows/windefs.c
+++ putty-0.72/windows/windefs.c
--- putty-0.73.orig/windows/windefs.c
+++ putty-0.73/windows/windefs.c
@@ -9,7 +9,7 @@
FontSpec *platform_default_fontspec(const char *name)
{

View File

@ -1,3 +1,19 @@
-------------------------------------------------------------------
Tue Oct 1 07:43:23 UTC 2019 - Jan Engelhardt <jengelh@inai.de>
- Update to release 0.73
* In bracketed paste mode, the terminal escape sequences that
should delimit the pasted data were appearing together on one
side of it, making it possible to misidentify pasted data as
manual keyboard input. [CVE-2019-17068, boo#1152753]
* An SSH-1 server sending a disconnection message could cause
an access to freed memory. [CVE-2019-17069]
* Tweaked terminal handling to prevent lost characters at the
ends of lines in gcc's colored error messages.
* Removed a bad interaction between the "clear scrollback"
operation and mouse selection that could give rise to the
dreaded "line==NULL" assertion box.
-------------------------------------------------------------------
Mon Aug 12 15:24:18 UTC 2019 - Jan Engelhardt <jengelh@inai.de>

View File

@ -17,7 +17,7 @@
Name: putty
Version: 0.72
Version: 0.73
Release: 0
Summary: SSH client with optional GTK-based terminal emulator frontend
License: MIT