Post a reply

Before posting, please read how to report bug or request support effectively.

Bug reports without an attached log file are usually useless.

Options
Add an Attachment

If you do not want to add an Attachment to your Post, please leave the Fields blank.

(maximum 10 MB; please compress large files; only common media, archive, text and programming file formats are allowed)

Options

Topic review

eyal

Re: Question regarding PuTTY version being used

Thanks!
eyal

Re: Question regarding PuTTY version being used

In regards to CVE-2019-9898, can you update if WinSCP versions that uses PuTTY with versions earlier than 0.71 are affected or whether it has its own mechanism for ensuring true randomness?
martin

Re: Question regarding PuTTY version being used

That's rather broad question. anyway, if there's a fix to a vulnerability of the PuTTY version used by WinSCP, we include the fix into WinSCP. In general.

Do you have a specific vulnerability in mind?
eyal

Question regarding PuTTY version being used

Hi,

Does the public vulnerabilities of the PuTTY version being used by WinSCP are automatically applied to the WinSCP or only the public WinSCP CVEs are the applicable vulnerabilities per version?

Thanks,
Eyal