Wind River Support Network

HomeDefectsLIN7-9584
Fixed

LIN7-9584 : Security Advisory - mercurial - CVE-2018-1000132

Created: Mar 15, 2018    Updated: Oct 26, 2018
Resolved Date: Aug 14, 2018
Found In Version: 7.0.0.28
Fix Version: 7.0.0.29
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

Mercurial version 4.5 and earlier contains a Incorrect Access Control (CWE-285) vulnerability in Protocol server that can result in Unauthorized data access. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in 4.5.1.

https://nvd.nist.gov/vuln/detail/CVE-2018-1000132

Other Downloads

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube