Lucene search
K

11 matches found

OSV
OSV
added 2025/03/31 3:54 p.m.10 views

MGASA-2025-0120 Updated mercurial packages fix security vulnerability

Mercurial SCM Web Interface cross site scripting. CVE-2025-2361...

5.3CVSS6.6AI score0.00486EPSS
Exploits0References5
Mageia
Mageia
added 2025/03/31 3:54 p.m.26 views

Updated mercurial packages fix security vulnerability

Mercurial SCM Web Interface cross site scripting. CVE-2025-2361...

5.3CVSS6.4AI score0.00486EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/03/24 12:0 a.m.13 views

Debian: Security Advisory (DSA-5883-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7.5AI score0.00486EPSS
Exploits0References2
OSV
OSV
added 2019/09/06 9:9 p.m.8 views

MGASA-2019-0250 Updated mercurial packages fix security vulnerability

It was discovered that Mercurial mishandled symlinks in subrepositories. An attacker could use this vulnerability to write arbitrary files to the target’s filesystem CVE-2019-3902...

5.9CVSS5.6AI score0.01413EPSS
Exploits0References3
OSV
OSV
added 2018/11/11 9:9 p.m.8 views

MGASA-2018-0442 Updated mercurial packages fix security vulnerability

An out-of-bounds read during parsing of a malformed manifest entry CVE-2018-17983...

9.1CVSS9.1AI score0.02033EPSS
Exploits0References3
Mageia
Mageia
added 2018/11/11 9:9 p.m.44 views

Updated mercurial packages fix security vulnerability

An out-of-bounds read during parsing of a malformed manifest entry CVE-2018-17983...

9.1CVSS4.2AI score0.02033EPSS
Exploits0References2
OSV
OSV
added 2018/01/03 2:22 p.m.10 views

MGASA-2018-0041 Updated mercurial packages fix security vulnerability

A specially malformed repository may have caused Git subrepositories to run arbitrary code CVE-2017-17458...

10CVSS9.6AI score0.06331EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/12/18 12:0 a.m.43 views

openSUSE Security Update : mercurial (openSUSE-2017-1388)

This update for mercurial fixes the following issue : - CVE-2017-17458: A specially malformed repository may have caused Git subrepositories to run arbitrary code bsc1071715 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

10CVSS7.4AI score0.06331EPSS
Exploits0References2
OSV
OSV
added 2016/05/12 8:0 p.m.8 views

MGASA-2016-0172 Updated mercurial packages fix security vulnerability

This update fixes possible arbitrary code execution when converting Git repos. Mercurial prior to 3.8 allowed arbitrary code execution when using the convert extension on Git repos with hostile names. This could affect automated code conversion services that allow arbitrary repository names. This...

8.8CVSS9.2AI score0.02655EPSS
Exploits0References4
CNVD
CNVD
added 2016/04/06 12:0 a.m.2 views

Slackware mercurial packet arbitrary code execution vulnerability (CNVD-2016-02025)

Slackware is an open source GNU/Linux operating system developed by software developer Patrick Volkerding. A security vulnerability exists in Slackware's mercurial packets. A remote attacker could exploit the vulnerability to execute arbitrary code...

8.8CVSS9.1AI score0.05405EPSS
Exploits0References1
OSV
OSV
added 2015/04/03 1:11 p.m.9 views

MGASA-2015-0129 Updated mercurial packages fix CVE-2014-9462

Updated mercurial packages fix security vulnerability: The mercurial source code management system suffers from a code-injection flaw due to insufficient shell quoting in sshpeer.validaterepo CVE-2014-9462...

7.5CVSS9.4AI score0.04199EPSS
Exploits1References4
Rows per page
Query Builder