-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 16 Jul 2024 10:13:59 +0000
Source: putty
Binary: pterm pterm-dbgsym putty putty-dbgsym putty-tools putty-tools-dbgsym
Architecture: arm64
Version: 0.74-1+deb11u2
Distribution: bullseye
Urgency: medium
Maintainer: arm Build Daemon (arm-conova-03) <buildd_arm64-arm-conova-03@buildd.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Description:
 pterm      - PuTTY terminal emulator
 putty      - Telnet/SSH client for X
 putty-tools - command-line tools for SSH, SCP, and SFTP
Changes:
 putty (0.74-1+deb11u2) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Cherry-pick from upstream:
     - Refactor the ssh_hash vtable.
     - Add an extra HMAC constructor function.
     - Fix CVE-2024-31497: biased ECDSA nonce generation allows an attacker
       to recover a user's NIST P-521 secret key via a quick attack in
       approximately 60 signatures. In other words, an adversary
       may already have enough signature information to compromise a victim's
       private key, even if there is no further use of vulnerable PuTTY
       versions.
Checksums-Sha1:
 1a66ea75c6abc19f5fc84a20a0d8f2e020f6639c 678676 pterm-dbgsym_0.74-1+deb11u2_arm64.deb
 b957bfb04fd0e44992c72604320db98d67e22045 206272 pterm_0.74-1+deb11u2_arm64.deb
 2a3b864789509f4cdef492a28f745cc88387e9be 2143740 putty-dbgsym_0.74-1+deb11u2_arm64.deb
 25043910e6e0c8e323df079fcfacbd50231dbfcf 3679756 putty-tools-dbgsym_0.74-1+deb11u2_arm64.deb
 7f4916f03c03714369c9f3a379e1a144c3a86f36 421912 putty-tools_0.74-1+deb11u2_arm64.deb
 6dde4a626ce130593a43f8c42cc01a78e84deb21 16037 putty_0.74-1+deb11u2_arm64-buildd.buildinfo
 31ef85c1575342de53f619b9c1c26617a3bdf9ae 428108 putty_0.74-1+deb11u2_arm64.deb
Checksums-Sha256:
 28fabaf5eb0a05fddb53ebc528907a58f71bedd9e6e7e03ee7ac39315919cf1b 678676 pterm-dbgsym_0.74-1+deb11u2_arm64.deb
 6f6c55445d272c023d2863f926a65647bf8a9e684617f6eb747f4e50edf431f5 206272 pterm_0.74-1+deb11u2_arm64.deb
 8eb92f48470326817b8209aa6e385b04e7a3a7734ef26139f3876a7cde8ac315 2143740 putty-dbgsym_0.74-1+deb11u2_arm64.deb
 6ecf5e8213ae867257e3b20e00ae412fa5b30fb61f2020c827abbe3306b51574 3679756 putty-tools-dbgsym_0.74-1+deb11u2_arm64.deb
 265cc53279a1e8c7658a1605058a26c665671352bdd9898557dcbee3c975a29b 421912 putty-tools_0.74-1+deb11u2_arm64.deb
 d534351877a5f1d1bd50cf4f06b882dbf094ee8fc1dc3f58dc47a3d66f81dfa7 16037 putty_0.74-1+deb11u2_arm64-buildd.buildinfo
 5e5bc0017e3b8753824ec22fae8a2be61156819b728a9689cfeb37b7eed24799 428108 putty_0.74-1+deb11u2_arm64.deb
Files:
 5d91d8acc10e1395246fe9cad5e382bb 678676 debug optional pterm-dbgsym_0.74-1+deb11u2_arm64.deb
 86ebe75766849448171af0c55a546107 206272 x11 optional pterm_0.74-1+deb11u2_arm64.deb
 50ae6e490deeefff172255eedc1ecef6 2143740 debug optional putty-dbgsym_0.74-1+deb11u2_arm64.deb
 e3df85e18daeffac91f12014f96c4beb 3679756 debug optional putty-tools-dbgsym_0.74-1+deb11u2_arm64.deb
 a2b1a73dc4a91289c517926c38ba7ec3 421912 net optional putty-tools_0.74-1+deb11u2_arm64.deb
 bdeb88f42b9827462bf8914617d4c9c3 16037 net optional putty_0.74-1+deb11u2_arm64-buildd.buildinfo
 3e7411f0066f978598efad2ea7d57239 428108 net optional putty_0.74-1+deb11u2_arm64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEU81tY/BC8e+eAeWhLffeOnPnbLUFAma4pucACgkQLffeOnPn
bLXd9xAAvhRkH5hchlWHnFscTV0loQ2loXHCTje5LIhhcf20gvSDrC/WYTNW12yw
moxrO0+gN7p4bvmmBV7fmY2UVxWSSGHUEC843gCxjH0EJQJn/PrTTc+IZF4rCRil
zF8Hn04lfELvJWElPcZtcUzJdr63CuLg9SGDFlKZ2KcZANJg4ICR+oelDv768Sza
FG933Ol5nDlxL1ofvDbI30nQqw8ZvXACAH1NG6+ldO6vhefcyJNGcH/8ceLsX7cO
rupvDwVa0OcPXANQ2sF3F6CxBdvXMGvxfTzsCBtEUK2pDqYXWxUafh4AdkvFkJVj
Jfm6bc1Gc8rnqLqgF0gyEhnYCIn1f7U/jhAm8KaYF7/cQ5oF5wp8yiXzx5j9+3rp
L/0gbspqjBf2z1KQaq8O8MVmK519FARop29wiyg2uyDmL1a0NrLZHahPSjieLMU0
5qtw9PndxWDVoJLE9AgzQCbf+x7wCe8ee/lbfyZ8bXgPJ9fcgHMQs++9Hdi7DxRz
aLGKtahCFl12PZaKOHigaegO/aQcSBZ0RclDHtJfh71wVVfTdAuTVI2oDVCk/Ju/
Fh0QxNB8ya5KMCO5HybQfjwGIP3LsxSA1Im3PRjKJ9KgyLVCM+FTLtNMTTbkzz+4
YxwoeSHwWgTMl50m73OGhhz4KxGTr8Rd2KcVM2wT6wRMmJAlZno=
=QgBs
-----END PGP SIGNATURE-----