Launchpad has imported 3 comments from the remote bug at https://bugzilla.redhat.com/show_bug.cgi?id=453550.
If you reply to an imported comment from within Launchpad, your comment will be sent to the remote bug automatically. Read more about Launchpad's inter-bugtracker facilities at https://help.launchpad.net/InterBugTracking. ------------------------------------------------------------------------ On 2008-07-01T09:50:11+00:00 Tomas wrote: Common Vulnerabilities and Exposures assigned an identifier CVE-2008-2942 to the following vulnerability: Directory traversal vulnerability in patch.py in Mercurial 1.0.1 allows user-assisted attackers to modify arbitrary files via ".." (dot dot) sequences in a patch file. Upstream patch (+ test case): http://www.selenic.com/hg/rev/87c704ac92d4 References: http://www.openwall.com/lists/oss-security/2008/06/30/1 Reply at: https://bugs.launchpad.net/ubuntu/+source/mercurial/+bug/244804/comments/0 ------------------------------------------------------------------------ On 2008-07-01T09:54:12+00:00 Tomas wrote: Test case from upstream commit: echo % 'test paths outside repo root' mkdir outside touch outside/foo hg init inside cd inside hg import - <<EOF diff --git a/a b/b rename from ../outside/foo rename to bar EOF cd .. This should affect all Fedora / EPEL versions. Security implications are quite minimal though (see also oss-security thread). Reply at: https://bugs.launchpad.net/ubuntu/+source/mercurial/+bug/244804/comments/1 ------------------------------------------------------------------------ On 2009-03-19T19:38:40+00:00 Dennis wrote: mercurial-1.2-2.el4.1 and mercurial-1.2-2.el5.1 built and on the way to testing Reply at: https://bugs.launchpad.net/ubuntu/+source/mercurial/+bug/244804/comments/8 ** Changed in: mercurial (Fedora) Importance: Unknown => Low -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/244804 Title: mercurial: insufficient input validation allowing file renames out of repository To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mercurial/+bug/244804/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
