2481289 – (CVE-2026-48851) CVE-2026-48851 PuTTY: TELNET session data is marked with trust sigils after authenticating to a proxy

Bug 2481289 (CVE-2026-48851) - CVE-2026-48851 PuTTY: TELNET session data is marked with trust sigils after authenticating to a proxy

Summary: CVE-2026-48851 PuTTY: TELNET session data is marked with trust sigils after a...

Keywords:
Status:	NEW
Alias:	CVE-2026-48851
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2481659 2481660
Blocks:
TreeView+	depends on / blocked

Reported:	2026-05-25 21:01 UTC by OSIDB Bzimport
Modified:	2026-05-26 20:14 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-05-25 21:01:19 UTC

PuTTY 0.77 before 0.84 uses a copy of the PuTTY icon as a trust indication for TELNET data but the trust status is not cleared between proxy authentication and the main session.

Note You need to log in before you can comment on or make changes to this bug.