PuTTY bug ssh2-keyderive-nonbug

This is a mirror. Follow this link to find the primary PuTTY web site.

Home | FAQ | Feedback | Licence | Updates | Mirrors | Keys | Links | Team
Download: Stable · Pre-release · Snapshot | Docs | Privacy | Changes | Wishlist

summary: SSH 2.0.13 apparently doesn't have key-derivation bug
class: bug: This is clearly an actual problem we want fixed.
difficulty: fun: Just needs tuits, and not many of them.
priority: medium: This should be fixed one day.
present-in: 0.53 0.53b 2002-10-07
fixed-in: 2002-12-19 8cb52a26e14f86a9553000661c50a0ec95c34ae5 (0.54)

Apparently, while PuTTY believes that SSH 2.0.* have the SSH-2 key-derivation bug, 2.0.13 (host OS/hardware not specified) doesn't, and this causes the expected decryption failures. The current OpenSSH code suggests that the bug is only present in versions before SSH 2.0.11.

Ref: <Pine.SGI.3.96.1021008003747.69817B-100000@serdis.dis.ulpgc.es>

Workaround: change `Miscomputes SSH2 encryption keys' on the `Bugs' panel from `Auto' to `Off'.


If you want to comment on this web site, see the Feedback page.
Audit trail for this bug.
(last revision of this bug record was at 2016-12-27 11:40:22 +0000)