Not sure if this will qualify but it may impact a pretty broad audience given the fact that putty code is part of many other apps (filezilla, âĶ) and it is the defacto standalone ssh client for windows administrators (besides openssh cygwin)
putty <= 0.66; affects putty versions dating back ~9 years.
Vulnerability Note: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-2563
Vendor Security Notification: http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-pscp-sink-sscanf.html
provided patch and PoC to vendor. was resolved within one week (which is very impressive!).
patch/poc will be released later today on this github account.
in total reported: