Lucene search
K

35 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2016/04/17 5:11 p.m.36 views

Security update for mercurial (important)

mercurial was updated to fix three security issues. These security issues were fixed: - CVE-2016-3069: Arbitrary code execution when converting Git repos bsc973176. - CVE-2016-3068: Arbitrary code execution with Git subrepos bsc973177. - CVE-2016-3630: Remote code execution in binary delta decodi...

6.8CVSS2.7AI score0.05405EPSS
Exploits0References3
OSV
OSV
added 2016/04/13 4:59 p.m.8 views

CVE-2016-3630

The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a 1 clone, 2 push, or 3 pull command, related to a a list sizing rounding error and b short records...

8.8CVSS8.9AI score
Exploits0References12
PyPA
PyPA
added 2016/04/13 4:59 p.m.8 views

PYSEC-2016-29

The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a 1 clone, 2 push, or 3 pull command, related to a a list sizing rounding error and b short records...

8.8CVSS8AI score0.04832EPSS
Exploits0References13Affected Software1
Prion
Prion
added 2016/04/13 4:59 p.m.20 views

Command injection

The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a 1 clone, 2 push, or 3 pull command, related to a a list sizing rounding error and b short records...

6.8CVSS8AI score0.04832EPSS
Exploits0References12Affected Software7
OSV
OSV
added 2016/04/13 4:59 p.m.7 views

UBUNTU-CVE-2016-3630

The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a 1 clone, 2 push, or 3 pull command, related to a a list sizing rounding error and b short records...

8.8CVSS7.7AI score0.04832EPSS
Exploits0References5
OSV
OSV
added 2016/04/13 4:59 p.m.36 views

PYSEC-2016-29

The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a 1 clone, 2 push, or 3 pull command, related to a a list sizing rounding error and b short records...

8.8CVSS7.6AI score0.04832EPSS
Exploits0References13
CVE
CVE
added 2016/04/13 4:0 p.m.87 views

CVE-2016-3630

CVE-2016-3630 : Mercurial versions before 3.7.3 are affected by a binary delta decoder vulnerability that could allow remote code execution via clone, push, or pull due to a list sizing rounding error and short records. Connected advisories indicate the fix is to upgrade Mercurial to 3.7.3 or new...

8.8CVSS8.7AI score0.04832EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2016/04/13 4:0 p.m.29 views

CVE-2016-3630

The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a 1 clone, 2 push, or 3 pull command, related to a a list sizing rounding error and b short records...

8.8AI score0.04832EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2016/04/13 12:0 a.m.26 views

openSUSE: Security Advisory for mercurial (openSUSE-SU-2016:1016-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.05405EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2016/04/12 7:8 p.m.27 views

Security update for mercurial (important)

mercurial was updated to fix three security issues. These security issues were fixed: - CVE-2016-3069: Arbitrary code execution when converting Git repos bsc973176. - CVE-2016-3068: Arbitrary code execution with Git subrepos bsc973177. - CVE-2016-3630: Remote code execution in binary delta decodi...

6.8CVSS2.7AI score0.05405EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/04/07 12:0 a.m.28 views

Debian DSA-3542-1 : mercurial - security update

Several vulnerabilities have been discovered in Mercurial, a distributed version control system. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2016-3068 Blake Burkhart discovered that Mercurial allows URLs for Git subrepositories that could result in...

8.8CVSS8AI score0.05405EPSS
Exploits0References10
ArchLinux
ArchLinux
added 2016/04/06 12:0 a.m.57 views

mercurial: arbitrary code execution

CVE-2016-3068 arbitrary code execution It was reported that in mercurial, there is similar vulnerability as CVE-2015-7545 in git. Git's git-remote-ext remote helper provides an ext:: URL scheme that allows running arbitrary shell commands. Mercurial allows specifying git repositories as...

6.8CVSS5.7AI score0.20144EPSS
Exploits0References5
Debian
Debian
added 2016/04/05 2:6 p.m.34 views

[SECURITY] [DSA 3542-1] mercurial security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3542-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 05, 2016 https://www.debian.org/security/faq -...

6.8CVSS2.9AI score0.05405EPSS
Exploits0
OpenVAS
OpenVAS
added 2016/04/05 12:0 a.m.21 views

Debian Security Advisory DSA 3542-1 (mercurial - security update)

Several vulnerabilities have been discovered in Mercurial, a distributed version control system. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2016-3068 Blake Burkhart discovered that Mercurial allows URLs for Git subrepositories that could result in...

6.8CVSS0.1AI score0.05405EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/08/19 12:0 a.m.31 views

Apache Subversion < 1.6.4 'libsvn_delta' Library Binary Delta svndiff Stream Parsing Multiple Overflows

The installed version of Subversion Client or Server is affected by multiple heap overflow issues. Specifically, the 'libsvndelta' library fails to perform sufficient boundary checks before processing certain svndiff streams. An attacker with commit access to a vulnerable Subversion server can...

8.5CVSS8.6AI score0.05112EPSS
Exploits1References4
Rows per page
Query Builder