Information disclosure in Putty

CVE-2015-2157

The (1) ssh2_load_userkey and (2) ssh2_save_userkey functions in PuTTY 0.51 through 0.63 do not properly wipe SSH-2 private keys from memory, which allows local users to obtain sensitive information by reading the memory.

Vulnerability class: Information Disclosure

EPSS: 0.001 (31.4th percentile) — read the EPSS interpretation.

Affected products

Putty — versions 0.51, 0.52, 0.53b
Simon_tatham Putty — versions 0.53
Debian Debian_linux — versions 7.0
Fedoraproject Fedora — versions 20, 22
Opensuse — versions 13.1, 13.2
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
FEDORA-2015-3160 (x_refsource_FEDORA, vendor-advisory)
72825 (vdb-entry, x_refsource_BID)
DSA-3190 (vendor-advisory, x_refsource_DEBIAN)
FEDORA-2015-3070 (x_refsource_FEDORA, vendor-advisory)
[oss-security] 20150228 CVE Request: PuTTY fails to clear private key information from memory (mailing-list, x_refsource_MLIST)
cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
[oss-security] 20150228 Re: CVE Request: PuTTY fails to clear private key information from memory (mailing-list, x_refsource_MLIST)
openSUSE-SU-2015:0474 (vendor-advisory, x_refsource_SUSE)
FEDORA-2015-3204 (x_refsource_FEDORA, vendor-advisory)