Lucene search
RedHatRHSA-2017:1576HistoryJun 27, 2017 - 5:25 a.m.
(RHSA-2017:1576) Important: mercurial security update
2017-06-2705:25:17
access.redhat.com
29
0.03 Low
EPSS
Percentile
91.0%
Mercurial is a fast, lightweight source control management system designed for efficient handling of very large distributed projects.
Security Fix(es):
- A flaw was found in the way “hg serve --stdio” command in Mercurial handled command-line options. A remote, authenticated attacker could use this flaw to execute arbitrary code on the Mercurial server by using specially crafted command-line options. (CVE-2017-9462)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | x86_64 | mercurial | < 1.4-5.el6_9 | mercurial-1.4-5.el6_9.x86_64.rpm |
| RedHat | 7 | x86_64 | mercurial-debuginfo | < 2.6.2-7.el7_3 | mercurial-debuginfo-2.6.2-7.el7_3.x86_64.rpm |
| RedHat | 7 | s390x | mercurial-hgk | < 2.6.2-7.el7_3 | mercurial-hgk-2.6.2-7.el7_3.s390x.rpm |
| RedHat | 7 | aarch64 | mercurial-hgk | < 2.6.2-7.el7_3 | mercurial-hgk-2.6.2-7.el7_3.aarch64.rpm |
| RedHat | 6 | x86_64 | mercurial-debuginfo | < 1.4-5.el6_9 | mercurial-debuginfo-1.4-5.el6_9.x86_64.rpm |
| RedHat | 6 | s390x | mercurial | < 1.4-5.el6_9 | mercurial-1.4-5.el6_9.s390x.rpm |
| RedHat | 7 | ppc64 | mercurial | < 2.6.2-7.el7_3 | mercurial-2.6.2-7.el7_3.ppc64.rpm |
| RedHat | 7 | x86_64 | mercurial-hgk | < 2.6.2-7.el7_3 | mercurial-hgk-2.6.2-7.el7_3.x86_64.rpm |
| RedHat | 6 | ppc64 | mercurial-hgk | < 1.4-5.el6_9 | mercurial-hgk-1.4-5.el6_9.ppc64.rpm |
| RedHat | 7 | aarch64 | mercurial | < 2.6.2-7.el7_3 | mercurial-2.6.2-7.el7_3.aarch64.rpm |
Related
nessus
nessus
Fedora 24 : mercurial (2017-b154ff2892)
2017-06-28 00:00:00
RHEL 6 / 7 : mercurial (RHSA-2017:1576)
2017-06-28 00:00:00
amazon
amazon
Important: mercurial
2017-07-06 19:06:00
openvas
openvas
openSUSE: Security Advisory for mercurial (openSUSE-SU-2017:1572-1)
2017-06-16 00:00:00
RedHat Update for mercurial RHSA-2017:1576-01
2017-06-27 00:00:00
Fedora Update for mercurial FEDORA-2017-b154ff2892
2017-06-27 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: mercurial-3.7.3-2.fc24
2017-06-26 23:48:18
[SECURITY] Fedora 25 Update: mercurial-3.8.1-3.fc25
2017-06-27 01:52:10
redhatcve
redhatcve
CVE-2017-9462
2017-06-07 09:37:33
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 09:17:56
Remote Code Execution (RCE)
2017-06-07 05:04:32
debian
debian
[SECURITY] [DLA 1005-1] mercurial security update
2017-06-29 19:14:13
[SECURITY] [DSA 3963-1] mercurial security update
2017-09-04 07:05:20
[SECURITY] [DLA 1414-1] mercurial security update
2018-07-05 21:00:52
github
github
High severity vulnerability that affects mercurial
2018-07-13 15:17:10
suse
suse
Security update for mercurial (important)
2017-06-15 18:11:09
Security update for mercurial (important)
2017-06-13 21:10:53
Security update for mercurial (important)
2017-06-19 15:14:55
cvelist
cvelist
CVE-2017-9462
2017-06-06 21:00:00
prion
prion
Design/Logic Flaw
2017-06-06 21:29:00
oraclelinux
oraclelinux
mercurial security update
2017-06-27 00:00:00
hackerone
hackerone
mageia
mageia
Updated mercurial packages fix security vulnerability
2017-06-26 12:28:17
osv
osv
PYSEC-2017-91
2017-06-06 21:29:00
mercurial - security update
2017-06-29 00:00:00
High severity vulnerability that affects mercurial
2018-07-13 15:17:10
nvd
nvd
CVE-2017-9462
2017-06-06 21:29:00
cve
cve
CVE-2017-9462
2017-06-06 21:29:00
centos
centos
emacs, mercurial security update
2017-06-28 19:23:17
debiancve
debiancve
CVE-2017-9462
2017-06-06 21:29:00
ubuntucve
ubuntucve
CVE-2017-9462
2017-06-06 00:00:00
gentoo
gentoo
Mercurial: Multiple vulnerabilities
2017-09-24 00:00:00
avleonov
avleonov
Vulnerability Management at Tinkoff Fintech School
2019-03-04 10:38:31