Описание
The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a (1) clone, (2) push, or (3) pull command, related to (a) a list sizing rounding error and (b) short records.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 3.7.3-1ubuntu1 |
| bionic | not-affected | 3.7.3-1ubuntu1 |
| cosmic | not-affected | 3.7.3-1ubuntu1 |
| devel | not-affected | 3.7.3-1ubuntu1 |
| esm-apps/bionic | not-affected | 3.7.3-1ubuntu1 |
| esm-apps/xenial | not-affected | 3.7.3-1ubuntu1 |
| esm-infra-legacy/trusty | released | 2.8.2-1ubuntu1.4 |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | released | 2.8.2-1ubuntu1.4 |
Показывать по
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a (1) clone, (2) push, or (3) pull command, related to (a) a list sizing rounding error and (b) short records.
The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a (1) clone, (2) push, or (3) pull command, related to (a) a list sizing rounding error and (b) short records.
The binary delta decoder in Mercurial before 3.7.3 allows remote attac ...
Mercurial arbitrary code execution vulnerability
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3