FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mercurial -- multiple vulnerabilities

Affected packages
mercurial < 2.7.3

Details

VuXML ID e1085b15-f609-11e5-a230-0014a5a57822
Discovery 2016-03-29
Entry 2016-03-29

Mercurial reports:

CVE-2016-3630: Remote code execution in binary delta decoding

CVE-2016-3068: Arbitrary code execution with Git subrepos

CVE-2016-3069: Arbitrary code execution when converting Git repos

[source]

References

CVE Name CVE-2016-3068
CVE Name CVE-2016-3069
CVE Name CVE-2016-3630
URL https://www.mercurial-scm.org/pipermail/mercurial/2016-March/049452.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.