Knowledge Library
Knowledge Library Home
Knowledge Library Home Knowledge Library Products Operating Systems Wind River Linux Wind River Linux 7 Toolchain & Build System LIN7-10002 : Security Advisory - mercurial - CVE-2018-13348

LIN7-10002 : Security Advisory - mercurial - CVE-2018-13348

Table of contents
Defect #: LIN7-10002
Found In Version7.0.0.28
Fix Version7.0.0.29
Severity:Standard
Status:Fixed
Created Date:07/15/2018
Component/s :Userspace
Sub Component:mercurial-native

Description

The mpatch_decode function in mpatch.c in Mercurial before 4.6.1 mishandles certain situations where there should be at least 12 bytes remaining after the current position in the patch data, but actually are not, aka OVE-20180430-0001.

https://nvd.nist.gov/vuln/detail/CVE-2018-13348

Downloads


KLID_DEFECT (use as Content ID for linking):  KLID_DEFECT_56078
 
Last modified