1 matches found
MGASA-2017-0282 Updated mercurial packages fix security vulnerabilities
Mercurial was not sanitizing hostnames passed to ssh, allowing shell injection attacks by specifying a hostname starting with -oProxyCommand...