Wind River Support Network

HomeDefectsLIN8-8872
Fixed

LIN8-8872 : Security Advisory - mercurial - CVE-2018-1000132

Created: Mar 15, 2018    Updated: Dec 3, 2018
Resolved Date: Aug 5, 2018
Found In Version: 8.0.0.25
Fix Version: 8.0.0.27
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

Mercurial version 4.5 and earlier contains a Incorrect Access Control (CWE-285) vulnerability in Protocol server that can result in Unauthorized data access. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in 4.5.1.

https://nvd.nist.gov/vuln/detail/CVE-2018-1000132

Other Downloads

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube