|Category:||Red Hat Local Security Checks|
|Title:||RedHat Update for mercurial RHSA-2017:1576-01|
|Summary:||The remote host is missing an update for the 'mercurial'; package(s) announced via the referenced advisory.|
The remote host is missing an update for the 'mercurial'
package(s) announced via the referenced advisory.
Mercurial is a fast, lightweight source
control management system designed for efficient handling of very large
distributed projects. Security Fix(es): * A flaw was found in the way 'hg serve
- -stdio' command in Mercurial handled command-line options. A remote,
authenticated attacker could use this flaw to execute arbitrary code on the
Mercurial server by using specially crafted command-line options.
mercurial on Red Hat Enterprise Linux Server (v. 6),
Red Hat Enterprise Linux Server (v. 7),
Red Hat Enterprise Linux Workstation (v. 6)
Please Install the Updated Packages.
Common Vulnerability Exposure (CVE) ID: CVE-2017-9462|
BugTraq ID: 99123
Debian Security Information: DSA-3963 (Google Search)
RedHat Security Advisories: RHSA-2017:1576
|Copyright||Copyright (C) 2017 Greenbone Networks GmbH|
|This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.