CVE 2016-3105
The convert extension in Mercurial before 3.8 might allow context-dependent attackers to execute arbitrary code via a crafted git repository name.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- CONFIRM: https://selenic.com/hg...
- CONFIRM: https://www.mercurial-...
- DEBIAN: DSA-3570
- BID: 90536
- SUSE: openSUSE-SU-2016:1336
- SLACKWARE: SSA:2016-123-01
- GENTOO: GLSA-201612-19
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
e3ace39
(Get the code!)