Tags: upstream security
the following vulnerability was published for mercurial.
command injection on clients through malicious ssh URLs
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
Please adjust the affected versions in the BTS as needed.