« List of all CVEs

CVE-2016-3630

Published: 4/13/2016 Last updated: 8/6/2024 Reserved: 3/21/2016

The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a (1) clone, (2) push, or (3) pull command, related to (a) a list sizing rounding error and (b) short records.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

conf-hg

Products affected (1)

Product Vendor Version
n/a n/a 10.1(1)SR1

References (48)