VDB

GCVE-110-MAGEIA-2016-112

GCVE-110-MAGEIA-2016-112
Advisory Published
Vulnetix · Advisory published March 16, 2016
Updated putty package fixes security vulnerability: Many versions of PSCP in PuTTY prior to 0.67 have a stack corruption vulnerability in their treatment of the 'sink' direction (i.e. downloading from server to client) of the old-style SCP protocol. In order for this vulnerability to be exploited, the user must connect to a malicious server and attempt to download any file (CVE-2016-2563). The putty package has been updated to version 0.67 to fix this issue and a few other bugs. The halibut package has been updated to version 1.1 to build the documentation.

Affected Products

VendorProductVersionsPlatforms
Mageiaputty0 (affected), 0.67-1.mga5 (unaffected), 0 (affected), 0.67-1.mga5 (unaffected)
Mageiahalibut1.1-2.mga5 (unaffected), 0 (affected), 1.1-2.mga5 (unaffected), 0 (affected)
Mageiaisodumper0 (affected), 0.48-1.mga5 (unaffected)

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›