For the record, <https://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/reject-trivial-auth.html> contains upstream's response to the wording of CVE-2021-36367.
- Bug#990901: putty: CVE-2021-36367 Salvatore Bonaccorso
- Bug#990901: putty: CVE-2021-36367 Colin Watson
- Bug#990901: putty: CVE-2021-36367 Jacob Nevins
