Lucene search
Cloud FoundryCFOUNDRY:BC2148F9AED1AB84B9A47825B3413788HistoryOct 28, 2021 - 12:00 a.m.
USN-5102-1: Mercurial vulnerabilities | Cloud Foundry
2021-10-2800:00:00
Cloud Foundry
www.cloudfoundry.org
13
0.002 Low
EPSS
Percentile
64.7%
Severity
Medium
Vendor
Canonical Ubuntu
Versions Affected
- Canonical Ubuntu 18.04
Description
Several security issues were fixed in Mercurial.
CVEs contained in this USN include: CVE-2018-17983, CVE-2019-3902.
Affected Cloud Foundry Products and Versions
Severity is medium unless otherwise noted.
- cflinuxfs3
- All versions prior to 0.261.0
- CF Deployment
- All versions prior to 16.25.0
Mitigation
Users of affected products are strongly encouraged to follow the mitigations below. The Cloud Foundry project recommends upgrading the following releases:
- cflinuxfs3
- Upgrade all versions to 0.261.0 or greater
- CF Deployment
- Upgrade all versions to 16.25.0 or greater
References
History
2021-10-28: Initial vulnerability report published.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cflinuxfs3 | lt | 0.261.0 | |
| cf deployment | lt | 16.25.0 |
Related
nessus
nessus
Ubuntu 16.04 ESM : Mercurial vulnerabilities (USN-5102-2)
2023-10-20 00:00:00
Ubuntu 18.04 LTS : Mercurial vulnerabilities (USN-5102-1)
2021-10-04 00:00:00
openSUSE Security Update : mercurial (openSUSE-2018-1297)
2018-10-29 00:00:00
osv
osv
mercurial vulnerabilities
2021-10-04 17:25:49
mercurial vulnerabilities
2021-03-16 20:09:04
PYSEC-2018-91
2018-10-04 23:29:00
openvas
openvas
Ubuntu: Security Advisory (USN-5102-2)
2023-01-27 00:00:00
Ubuntu: Security Advisory (USN-5102-1)
2021-10-05 00:00:00
Mageia: Security Advisory (MGASA-2018-0442)
2022-01-28 00:00:00
ubuntu
ubuntu
Mercurial vulnerabilities
2021-03-16 00:00:00
Mercurial vulnerabilities
2021-10-04 00:00:00
Mercurial vulnerability
2019-08-06 00:00:00
redhatcve
redhatcve
CVE-2018-17983
2018-10-09 13:49:42
CVE-2019-3902
2019-04-18 17:19:51
cve
cve
CVE-2018-17983
2018-10-04 23:29:00
CVE-2019-3902
2019-04-22 16:29:01
prion
prion
Out-of-bounds
2018-10-04 23:29:00
Design/Logic Flaw
2019-04-22 16:29:00
mageia
mageia
Updated mercurial packages fix security vulnerability
2018-11-12 00:09:54
Updated mercurial packages fix security vulnerability
2019-09-07 00:09:08
ubuntucve
ubuntucve
CVE-2018-17983
2018-10-04 00:00:00
CVE-2019-3902
2019-04-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-10-05 16:27:27
Arbitrary File Write
2019-04-23 08:10:52
suse
suse
Security update for mercurial (moderate)
2018-10-27 00:22:45
Security update for mercurial (low)
2020-06-26 00:00:00
Security update for mercurial (low)
2020-06-27 00:00:00
debiancve
debiancve
CVE-2018-17983
2018-10-04 23:29:00
CVE-2019-3902
2019-04-22 16:29:01
cvelist
cvelist
CVE-2018-17983
2018-10-04 23:00:00
CVE-2019-3902
2019-04-22 15:29:13
nvd
nvd
CVE-2018-17983
2018-10-04 23:29:00
CVE-2019-3902
2019-04-22 16:29:01
github
github
Mercurial Out-of-bounds Read vulnerability
2022-05-14 01:49:39
Mercurial Path Traversal/Link Following vulnerability
2022-02-15 01:13:11
alpinelinux
alpinelinux
CVE-2019-3902
2019-04-22 16:29:01
debian
debian
[SECURITY] [DLA 1764-1] mercurial security update
2019-04-25 17:31:46
[SECURITY] [DLA 2293-1] mercurial security update
2020-07-31 11:06:17
rosalinux
rosalinux
Advisory ROSA-SA-2021-1918
2021-07-02 17:29:24
photon
photon