|Title:||Mercurial Multiple Vulnerabilities (Windows)|
|Summary:||This host is installed with Mercurial; and is prone to multiple vulnerabilities.|
This host is installed with Mercurial
and is prone to multiple vulnerabilities.
Multiple flaws are due to,
- The mpatch_decode function in mpatch.c mishandles certain situations
where there should be at least 12 bytes remaining after the current position
in the patch data, but actually are not.
- The mpatch_apply function in mpatch.c incorrectly proceeds in cases where the
fragment start is past the end of the original data.
- The mpatch.c mishandles integer addition and subtraction.
Mercurial before version 4.6.1
Upgrade to Mercurial 4.6.1 or later.
For updates refer to Reference links.
Common Vulnerability Exposure (CVE) ID: CVE-2018-13346|
Common Vulnerability Exposure (CVE) ID: CVE-2018-13347
Common Vulnerability Exposure (CVE) ID: CVE-2018-13348
|Copyright||Copyright (C) 2018 Greenbone Networks GmbH|
|This is only one of 71225 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.