A flaw was found in Mercurial prior to 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mercurial mercurial |
||
redhat enterprise linux 7.0 |
||
debian debian linux 8.0 |