CVE-2016-3069

Опубликовано: 13 апр. 2016

Источник: debian

EPSS Низкий

Описание

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted name when converting a Git repository.

Пакет	Статус	Версия исправления	Релиз	Тип
mercurial	fixed	3.7.3-1		package

https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_3.7.3_.282016-3-29.29
https://selenic.com/repo/hg-stable/rev/197eed39e3d5 (1/5)
https://selenic.com/repo/hg-stable/rev/cdda7b96afff (2/5)
https://selenic.com/repo/hg-stable/rev/b732e7f2aba4 (3/5)
https://selenic.com/repo/hg-stable/rev/80cac1de6aea (4/5)
https://selenic.com/repo/hg-stable/rev/ae279d4a19e9 (5/5)

EPSS

Процентиль: 86%

0.0283

Низкий

CVE-2016-3069

CVSS3: 8.8

ubuntu

больше 9 лет назад

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted name when converting a Git repository.

CVE-2016-3069

redhat

больше 9 лет назад

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted name when converting a Git repository.

CVE-2016-3069

CVSS3: 8.8

nvd

больше 9 лет назад

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted name when converting a Git repository.

GHSA-8fm8-7365-5rh2

CVSS3: 8.8

github

больше 3 лет назад

Mercurial vulnerable to arbitrary code execution via a crafted name when converting a Git repository

ELSA-2016-0706

oracle-oval

больше 9 лет назад

ELSA-2016-0706: mercurial security update (IMPORTANT)

EPSS

Процентиль: 86%

0.0283

Низкий