mercurial: Buffer underflow in mpatch.c:mpatch_apply()

mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002...

MGASA-2018-0355 Updated mercurial packages fix security vulnerabilities

This update provides mercurial version 4.6.2 and fixes the following security issues: Fix the mpatchapply function in mpatch.c that incorrectly proceeds in cases where the fragment start is past the end of the original data CVE-2018-13346. Fix mpatch.c that mishandles integer addition and...

PYSEC-2018-89

mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002...

CVE-2018-13347

mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002...

CVE-2016-9961

game-music-emu before 0.6.1 mishandles unspecified integer values...

CVE-2016-9961

game-music-emu before 0.6.1 mishandles unspecified integer values...

CVE-2014-9876

drivers/char/diag/diagfwd.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5, 5X, 6, 6P, and 7 2013 devices mishandles certain integer values, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28767796 and Qualcomm internal bug CR48340...

CVE-2014-9876

CVE-2014-9876 affects Android with Qualcomm components on Nexus 5/5X/6/6P/7 (2013). The vulnerability is in drivers/char/diag/diagfwd.c, where mishandling of certain integer values allows privilege escalation via a crafted application (Android internal bug 28767796; Qualcomm CR483408). Exploitati...