Package: putty Version: 0.57-1 Priority: wishlist This version adds features, including some crowd-pleasers such as wildcards in PSFTP and saving mid-session, and also fixes some annoying Unix-specific bugs (notably `unix-kex-packet').
There's been a fair amount of internal reorganisation, followed by a few months' inactivity / testing, so it should be reasonably stable. For Debian, I believe it fixes: #204811 "pterm consumes too much CPU time" #254578 "psftp doesn't support wildcards" Possibly also #287960 -- not checked. If you're going to build the docs, you'll probably also need a new Halibut. SVN is pretty good at the moment AFAIK -- should be better in most regards than the current Debian package, anyway. Of course, pre-built docs are still in the release tarball. There is a new `putty.info' target which isn't built by default, though.
>From [EMAIL PROTECTED] Sun Feb 20 16:05:30 2005 From: [EMAIL PROTECTED] (Simon Tatham) Date: Sun Feb 20 16:05:41 2005 Subject: SECURITY UPDATE: PuTTY version 0.57 is released Message-ID: <[EMAIL PROTECTED]> SECURITY UPDATE: PuTTY version 0.57 is released ----------------------------------------------- All the pre-built binaries, and the source code, are now available from the PuTTY website at http://www.chiark.greenend.org.uk/~sgtatham/putty/ This is a SECURITY UPDATE. We recommend that _everybody_ upgrade, as soon as possible. This version fixes a security hole in previous versions of PuTTY, which can allow a malicious SFTP server to attack your client. If you use either PSCP or PSFTP, you should upgrade. Users of the main PuTTY program are not affected. (However, note that the server must have passed host key verification before this attack can be launched, so a man-in-the-middle shouldn't be able to attack you if you're careful.) This vulnerability was found by iDEFENSE, who we expect to release an advisory on the subject shortly. In addition to this security patch, there are also a few very minor bug fixes which should stop PuTTY from crashing in circumstances involving port forwarding, or failing to correctly perform X forwarding. Other than that, though, 0.57 is almost identical to the previous release 0.56. I repeat: PuTTY 0.57 fixes a SERIOUS SECURITY HOLE in many previous versions of PSCP and PSFTP. If you use either of those programs, you should upgrade now. Enjoy using PuTTY! Cheers, Simon -- Simon Tatham "The distinction between the enlightened and the <[EMAIL PROTECTED]> terminally confused is only apparent to the latter."