head 1.1; access; symbols; locks; strict; comment @ * @; 1.1 date 2026.06.23.13.23.31; author ryoon; state Exp; branches; next ; commitid DL6wCpIzh9G4qVKG; desc @@ 1.1 log @security/putty: Update to 0.84 Changelog: These features are new in 0.84 (released 2026-05-22): * Security issue: fixed a remotely triggerable double-free in RSA key exchange. (We don't know of any way it is exploitable to execute code.) * Minor security issue: fixed a remotely triggerable crash in NIST ECDSA signature verification. (An assertion failure – definitely not exploitable to execute code.) * Minor security issue: fixed marking of Telnet and Rlogin session data with a trust sigil after you authenticated to a proxy (possibly allowing a server to spoof a repeat proxy password prompt). * Ability to run a specified command before starting the connection, e.g. to perform wake-on-LAN or a port knock. * On Unix: display 'pre-edit text', showing the progress of using multiple keystrokes to compose a single Unicode character. * On Unix: improved support for to running the GUI tools on Wayland (fixed startup issues and tuned performance). * Bug fix: configuring a SSH certificate authority on Unix would fail unless you manually made a config directory. * Bug fix: spurious "Network error: Socket is not connected" when authenticating to some HTTP proxies. * Bug fix: disabling cursor blinking in the Windows Control Panel but enabling it in PuTTY would lead to a tight loop. @ text @$NetBSD$ * For SIGCHLD. --- unix/utils/subprocess_waiter.c.orig 2026-06-23 13:17:12.197007819 +0000 +++ unix/utils/subprocess_waiter.c @@@@ -8,6 +8,7 @@@@ #include "putty.h" #include "tree234.h" +#include #include #include @