net-misc/putty-0.80 contains the mitigation for the Terrapin vulnerability: https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html "Security fix: support for OpenSSH's new kex-strict protocol modification, addressing a vulnerability in some @openssh.com cipher and MAC modes, in particular ChaCha20+Poly1305. "
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bd44ffd68222824e8144fc501cf46eb12a39a311 commit bd44ffd68222824e8144fc501cf46eb12a39a311 Author: Matthew Smith <matthew@gentoo.org> AuthorDate: 2023-12-19 19:55:14 +0000 Commit: Matthew Smith <matthew@gentoo.org> CommitDate: 2023-12-19 19:55:14 +0000 net-misc/putty: add 0.80 Bug: https://bugs.gentoo.org/920304 Signed-off-by: Matthew Smith <matthew@gentoo.org> net-misc/putty/Manifest | 1 + net-misc/putty/putty-0.80.ebuild | 92 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 93 insertions(+)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=06e89ec5df3cb63155accce598f844a702bc1644 commit 06e89ec5df3cb63155accce598f844a702bc1644 Author: Matthew Smith <matthew@gentoo.org> AuthorDate: 2023-12-20 09:26:05 +0000 Commit: Matthew Smith <matthew@gentoo.org> CommitDate: 2023-12-20 09:26:05 +0000 net-misc/putty: drop 0.78 (security cleanup) Bug: https://bugs.gentoo.org/920304 Signed-off-by: Matthew Smith <matthew@gentoo.org> net-misc/putty/Manifest | 1 - net-misc/putty/putty-0.78.ebuild | 91 ---------------------------------------- 2 files changed, 92 deletions(-)