Please update your package builds, thanks.
Multiple security vulnerabilities in Mercurial's HTTP wire protocol interface
were fixed in this release:
* Not all commands would deny access if the repository was configured to not
allow read access.
* The "batch" command did not check permissions o
On Tue, Mar 6, 2018 at 11:51 AM, Kevin Bullock
wrote:
> Please update your package builds, thanks.
>
> Multiple security vulnerabilities in Mercurial's HTTP wire protocol
> interface were fixed in this release:
>
> * Not all commands would deny access if the repository was configured to
> not all
