CVE 2016-3068
Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted git ext:: URL when cloning a subrepository.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- CONFIRM: https://selenic.com/re...
- CONFIRM: https://www.mercurial-...
- DEBIAN: DSA-3542
- FEDORA: FEDORA-2016-79604dde9f
- FEDORA: FEDORA-2016-b7f1f8e3bf
- SUSE: SUSE-SU-2016:1010
- SUSE: SUSE-SU-2016:1011
- SUSE: openSUSE-SU-2016:1016
- SUSE: openSUSE-SU-2016:1073
- REDHAT: RHSA-2016:0706
- CONFIRM: http://www.oracle.com/...
- CONFIRM: http://www.oracle.com/...
- BID: 85733
- GENTOO: GLSA-201612-19
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
9199653
demo site
(Get the code!)