CVE-2018-13346

N/A

Description

The mpatch_apply function in mpatch.c in Mercurial before 4.6.1 incorrectly proceeds in cases where the fragment start is past the end of the original data, aka OVE-20180430-0004.

CVE Details

CVSS v3.1 ScoreN/A

Published7/6/2018

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

mercurial:mercurial

Weaknesses (CWE)

CWE-20

References

https://access.redhat.com/errata/RHSA-2019:2276(cve@mitre.org)

https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html(cve@mitre.org)

https://www.mercurial-scm.org/repo/hg/rev/faa924469635(cve@mitre.org)

https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.6.1_.282018-06-06.29(cve@mitre.org)

https://access.redhat.com/errata/RHSA-2019:2276(af854a3a-2127-422b-91ae-364da2661108)

https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html(af854a3a-2127-422b-91ae-364da2661108)

https://www.mercurial-scm.org/repo/hg/rev/faa924469635(af854a3a-2127-422b-91ae-364da2661108)

https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.6.1_.282018-06-06.29(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.