← back
CVE-2016-3069

CVE-2016-3069

EPSS 5.0%
Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted name when converting a Git repository.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181505.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2016-April/181542.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00016.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00017.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00018.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00043.htmlhttp://rhn.redhat.com/errata/RHSA-2016-0706.htmlhttps://security.gentoo.org/glsa/201612-19https://selenic.com/repo/hg-stable/rev/197eed39e3d5https://selenic.com/repo/hg-stable/rev/80cac1de6aeahttps://selenic.com/repo/hg-stable/rev/ae279d4a19e9https://selenic.com/repo/hg-stable/rev/b732e7f2aba4