Out-of-bounds Read The advisory has been revoked - it doesn't affect any version of package mercurial Open this link in a new tab
Threat Intelligence
EPSS
0.24% (65th
percentile)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-UBUNTU1810-MERCURIAL-311052
- published 4 Oct 2018
- disclosed 4 Oct 2018
Introduced: 4 Oct 2018
CVE-2018-17983 Open this link in a new tabAmendment
The Ubuntu security team deemed this advisory irrelevant for Ubuntu:18.10.
NVD Description
Note: Versions mentioned in the description apply only to the upstream mercurial package and not the mercurial package as distributed by Ubuntu.
cext/manifest.c in Mercurial before 4.7.2 has an out-of-bounds read during parsing of a malformed manifest entry.