Mremoteng: Update PuTTYNG to 0.71

Created on 19 Mar 2019  路  11Comments  路  Source: mRemoteNG/mRemoteNG

mRemoteNG currently includes PuTTYNG v0.70, which has known security vulnerabilities.

Expected Behavior

A new mRemoteNG release should be issued that bundles PuTTYNG v0.71. PuTTYNG repo to v0.71

Current Behavior

mRemoteNG includes PuTTYNG v0.70, which has known security vulnerabilities that are documented at https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html.

Possible Solution

It looks like the separate repo for PuTTYNG is already in the process of being updated, per https://github.com/mRemoteNG/PuTTYNG/commit/31890b846d0e50f6c89b7ee4f68a33bda01ef48a. So the developers already appear to be aware of this, it just hasn't been reported as an issue yet.

Steps to Reproduce (for bugs)

  1. Install mRemoteNG 1.76.16.41771.
  2. Browse to C:\Program Files (x86)\mRemoteNG.
  3. View properties of PuTTYNG.exe and verify that the version is 0.70.

Context

Users want to ensure that they are not using tools with known security vulnerabilities.

Your Environment

Windows 10

Security Vuln
Source
picture JongleurNin

All 11 comments

Work has already been completed to merge 0.71 into puttyng. Testing has not yet been completed.

Build is available here if you want to test:
https://ci.appveyor.com/project/mremoteng/puttyng-77pmq/builds/23130281/artifacts

This will be included in 1.77 and we will discuss another 1.76 release.

kmscode picture kmscode on 19 Mar 2019

Thanks for the quick comment! I patched PuTTYNG.exe and verified that the version has been incremented, and that the code is signed by the developer. I also verified that I could SSH into a few Linux machines from Windows with this patch applied.

JongleurNin picture JongleurNin on 19 Mar 2019
👍1

Getting some scaling problems inside mremoteng after this update..text is cut on the sides.

nmat picture nmat on 20 Mar 2019

@nmat Within all mRemoteNG or just ssh sessions?

sparerd picture sparerd on 20 Mar 2019

Only SSH it seems.

Tested with CentOS and Ubuntu and all of them scale out of the tabbed area

nmat picture nmat on 20 Mar 2019

for example on ubuntu top and left side is cut by 1 character

nmat picture nmat on 20 Mar 2019

Hmm I thought we had fixed that. I'll take a look

sparerd picture sparerd on 20 Mar 2019
👍1

@sparerd we fixed that in 1.77... I'll find the code and backport to 1.76. PuTTYNG already has the necessary changes, so I think that's why we're seeing issues in 1.76 - I only tested 0.71 with 1.77.

kmscode picture kmscode on 20 Mar 2019
👍1

Ahh yea that's why... 馃槩

sparerd picture sparerd on 20 Mar 2019

I'll create a new issue for this

sparerd picture sparerd on 20 Mar 2019

@nmat @kmscode #1365 created

sparerd picture sparerd on 20 Mar 2019
👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

iron51 picture iron51  路  3Comments
nerddtvg picture nerddtvg  路  3Comments
sparerd picture sparerd  路  3Comments
PCNerd2001 picture PCNerd2001  路  3Comments
mmcnay picture mmcnay  路  4Comments