Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 504
Alerts This Week
Warning Icon 1 504

Gentoo GLSA-200807-09 Normal: Mercurial Directory Traversal Attack

gentoo
Calendar Grey July 16, 2008
Dist Gentoo Esm H88
Gentoo Linux Security Advisory GLSA 202312-15 resolves a buffer overflow vulnerability in Git, which may result in unauthorized code execution.
A directory traversal vulnerability in Mercurial allows for the renaming of arbitrary files.

Summary

Gentoo Linux Security Advisory GLSA 200807-09 https://security.gentoo.org/ Severity: Normal Title: Mercurial: Directory traversal Date: July 15, 2008 Bugs: #230193 ID: 200807-09

Synopsis ======= A directory traversal vulnerability in Mercurial allows for the renaming of arbitrary files.
Background ========= Mercurial is a distributed Source Control Management system.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-util/mercurial < 1.0.1-r2 >= 1.0.1-r2
========== Jakub Wilk discovered a directory traversal vulnerabilty in the applydiff() function in the mercurial/patch.py file.
Impact ===== A remote attacker could entice a user to import a specially crafted ...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround